Senior Incident Responder

PRIMARY DETAIL

• $122,628 - $136,449 per annum (HEW 8) plus 17% Superannuation and Annual leave loading

• Full-time, Continuing

• Macquarie University, Wallumattagal Campus, North Ryde

As our Cyber team grows, we are hiring for a Senior Incident Response Specialist to join our Cyber Security team and bring advanced, hands-on expertise in enterprise incident response. Working alongside four incident analysts and reporting to the Cyber Security Operations Manager, you will be the team's senior technical practitioner, the person who takes on the most complex cases, drives faster and higher-quality investigations.

This is a role for someone who thrives in the detail of SIEM, EDR and SOAR tooling, who can correlate telemetry under pressure, run hypothesis-driven threat hunts, and translate technical findings into clear, actionable remediation for both technical and executive audiences. If you are passionate about continuous improvement and want to make a tangible difference, we want to hear from you.

About the Role

As the Senior Incident Response Specialist, you will serve as the primary escalation point for complex, high-severity and enterprise-wide cyber security incidents. Your responsibilities will include:

• Leading end-to-end response to complex and high-severity incidents from detection and triage through containment, eradication, recovery and post-incident review while ensuring lessons learned translate into measurable improvements.

• Overseeing and guiding day-to-day operational incident response, including prioritisation of alerts, investigations and response actions undertaken by cyber security analysts.

• Performing advanced root cause analysis, threat actor assessment and deep log analysis at scale, leveraging SIEM, EDR, SOAR and other security monitoring platforms.

• Driving hypothesis-driven threat hunting and telemetry correlation to identify previously undetected threats across the University environment.

• Developing, refining and operationalising incident response playbooks, procedures, automation and tooling to improve maturity, consistency and key response metrics (MTTA/MTTR).

• Partnering with Security Operations, Infrastructure, Networks, Applications and GRC teams to enhance cross-functional integration and embed security-by-design principles.

• Preparing high-quality incident reports, executive briefings and governance materials that translate complex technical issues into clear, risk-based insights for senior stakeholders.

• Contributing to continuous improvement aligned with industry frameworks and good practice, including NIST/ISO, ACSC Essential Eight and internal policy.

• Improving 24×7 response readiness and surge capacity for the Cyber Security Operations function.

• Mentoring and coaching team members, building capability through knowledge sharing and guidance on complex investigations.

About Us

Macquarie University Information Technology (MQ IT) embraces the University's mission to be bold, distinctive, progressive and transformational. We are a trusted business partner with an ethos of service, and we pride ourselves on a strong collaborative partnership approach to transformation across the University.

The Cyber Security Operations team sits within the Information Technology division under the Deputy Vice-Chancellor, People and Operations portfolio. We are tasked with helping the University achieve its compliance obligations and protect its people, information and systems from information security risks. This is a team that values technical excellence, operational rigour and a genuine commitment to making the University safer every day.

About You (Selection Criteria)

You are an experienced cyber security incident response practitioner who can independently handle complex cases from initial alert through to resolution. You bring deep, current technical expertise across enterprise security operations tooling and a genuine drive to improve the processes, automation and knowledge base around you. You communicate with clarity whether briefing an executive on a significant incident or coaching a team member through a challenging investigation.

• Tertiary qualification in Information Technology, Cyber Security or a related discipline and/or equivalent extensive professional experience.

• Significant hands-on experience in cyber security incident response, including leadership of complex and high-severity incidents within large or complex environments, with demonstrated proficiency across SIEM, EDR and SOAR platforms.

• Advanced knowledge of cyber threats, attack techniques, detection methods, threat hunting and response strategies.

• Proven capability in scripting, automation or tooling development to enhance detection, response and operational efficiency.

• Demonstrated ability to develop and mature incident response playbooks, procedures, case management practices and performance metrics.

• Advanced written and verbal communication skills, with the ability to prepare executive-level reports and convey complex technical matters to non-technical audiences.

• Demonstrated ability to mentor and build capability within a team, manage competing priorities, operate effectively under pressure, and exercise sound judgement.

• Relevant industry certifications in incident response, threat intelligence or security operations (e.g., GCIH, GCFA, GCIA, OSCP or equivalent) (Desirable).

How to Apply

To be considered, please apply online with your CV and a cover letter outlining how your experience aligns with the selection criteria (above).

Applications Close

Applications will close on Wednesday 1st April at 11.55PM (AEST), please note we reserve the right to progress or decline an application prior to the application closing date.

Why Join Us?

Macquarie is a university engaged with the real and often complex problems and opportunities that define our lives. Since our foundation over 60 years ago, we have aspired to be a different type of university. Over the years, we have grown to become the centre of a vibrant local and global community. Connect with us today.

We rank amongst the top employers in the Australian Workplace Employers Index, having recently earned a five-star rating in the QS World Rankings with the highest rating for employability. Take a look at the fabulous staff benefits on offer when you work at Macquarie University:

• Flexible, hybrid work arrangements

• 17% Superannuation

• Subsidised onsite parking options

• Extensive training and professional development programs

• Onsite childcare facilities to support working parents

• Onsite vacation care during school holidays

• Discounted health insurance

• Subsidised membership at our Sport & Aquatic Centre

• Access to an Employee Assistance Program for free and confidential support

• Convenient onsite GP, imaging, and physiotherapy clinics

Pre-Employment Checks

Macquarie University cultivates a workplace defined by safety, ethical conduct, and strong integrity. Prior to completion of an offer of employment, preferred candidates will be required to participate in a combination of pre-employment checks relevant to the role they have applied for.

Your employment is conditional upon the completion and maintenance of all role-required pre-employment or background checks in terms satisfactory to the University.

If you're already part of the Macquarie Group (MQ University, U@MQ, MQ Health, MGSM), you'll need to apply through your employee Workday account. To apply for this job: Login to Workday and go to the Careers App > Find Jobs.

Applications Close:

01/04/2026 11:59 PM

​
A Place Where You Belong
At Macquarie, we believe diversity makes us stronger, inclusion drives our success, and belonging inspires us to do our best work. We are proud to foster a community where different backgrounds, identities, and experiences are valued, and where our people are empowered to thrive through supportive leadership, shared responsibility, and a deep commitment to genuine care and respect for our community. Find out more about our vision for a truly inclusive workplace in our Diversity, Inclusion and Belonging Framework.