Detection Engineer

Job Description
At Boeing, we innovate and collaborate to make the world a better place. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
Location:
Brisbane
Category:
Engineering / Technical
Position Type:
Permanent
Job Reference:
BOE/1881980B
Attachments:
No File Attached
Share This:
About us
Boeing Defence Australia is shaping the future of aerospace and delivering some of the nation's most important programs for the Australian Defence Force.
Joining us is a chance to make your mark, working with a diverse team that is united in pushing the boundaries of imagination and excellence.
We currently employ more than 3,000 people across 14 sites in Australia and three international locations and have a range of opportunities available as we plan for future growth.
The opportunity
We are seeking a talented and experienced Detection Engineer to join our growing team. We are seeking a specialist who can establish Security Information and Event Management (SIEM) technologies, onboarding processes for monitoring systems, application monitoring, and developing detection use cases.
The ideal candidate will have extensive experience with Splunk, firewall technologies, Threat management tools, and an exposure to incident response. The candidate must have or be able to gain and maintain and NV1 or higher AGSVA security clearance.
Responsibilities:

• Lead the design, implementation, and configuration of SIEM solutions tailored to Boeing Australia's organisational needs.
• Develop monitoring plans in collaboration with system SMEs and onboard monitoring into the SIEM environment.
• Utilise threat management tools such as MISP to collect, analyse, and share threat intelligence effectively. Integrate threat intelligence into the SIEM environment to enhance detection and response capabilities.
• Contribute to Incident response, including detection, containment, eradication, and recovery phases. Contribute to post-incident analysis to identify root causes and recommend improvements to prevent future incidents.
• Prepare and present reports on security metrics, detections, incidents, and trends to management.
• Work closely with cross-functional teams to enhance overall security awareness and practices.
• Provide mentorship to junior security staff on SIEM technologies, onboarding processes, detection use cases, and incident response procedures.

Experience/Qualifications

• The ability to hold and maintain NV1 security clearance.
• Minimum of 5 years of experience in information security, with a focus on SIEM technologies, particularly Splunk.
• A diploma or degree in cyber security, IT, related discipline or equivalent experience
• Strong experience in onboarding systems and applications into SIEM environments.
• Familiarity with application monitoring best practices and tools.
• Proven experience in creating detection use cases based on threat intelligence and threat assessments.
• Familiarity with threat intelligence tools, and their application in security operations.
• Relevant certifications related to Splunk, or incident handling are a plus.
• Excellent analytical and problem-solving skills, demonstrating attention to detail.
• Strong communication skills, both verbal and written, with the ability to convey complex security concepts to non-technical stakeholders.

Preferred Skills:

• Experience with scripting languages (e.g., Python, PowerShell) for automation and integration tasks.
• Knowledge of compliance frameworks (e.g., ISM, DSPF, NIST) and their application in security practices.
• Familiarity with cloud security principles and technologies.

Applicants must be Australian Citizens to meet Defence security requirements.
Culture
We are committed to building a diverse and inclusive workplace. Female applicants, people of Aboriginal or Torres Strait Island descent and ex-defence personnel are encouraged to apply.
Benefits

• Flexible working options
• Study assistance
• Salary packaging
• Employee Incentive Program
• Global opportunities

How to apply
If you are ready to join an innovative industry leader, click Apply Now.
Equal Opportunity Employer:
We are an equal opportunity employer. We do not accept unlawful discrimination in our recruitment or employment practices on any grounds including but not limited to; race, color, ethnicity, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military and veteran status, or other characteristics covered by applicable law.
We have teams in more than 65 countries, and each person plays a role in helping us become one of the world's most innovative, diverse and inclusive companies. We are proud members of the Valuable 500 and welcome applications from candidates with disabilities. Applicants are encouraged to share with our recruitment team any accommodations required during the recruitment process. Accommodations may include but are not limited to: conducting interviews in accessible locations that accommodate mobility needs, encouraging candidates to bring and use any existing assistive technology such as screen readers and offering flexible interview formats such as virtual or phone interviews.