Senior Security Operations Analyst

About the role

Mercury is seeking a Senior Security Operations Analyst to join its Security Operations Centre (SOC). You will work with a supportive team and a managed security service partner to protect the digital and operational technology that underpins New Zealand’s energy future.

Key responsibilities

• Develop and refine detection logic across SIEM and security tooling, and conduct proactive threat hunting.
• Lead end‑to‑end incident investigations, including root‑cause analysis and continuous improvement.
• Apply automation and AI‑assisted capabilities to streamline security workflows.
• Support detection, monitoring and response for operational technology (OT) environments.
• Contribute to vulnerability and exposure management programmes.
• Mentor team members and share technical knowledge across the SOC.
• Provide technical input to security partner relationships and contribute to security reporting.
• Participate in an on‑call roster as part of a 24/7 security operations model.

Required profile

• 3+ years experience in security operations or security engineering.
• Hands‑on experience with SIEM and endpoint detection platforms in a Microsoft‑centric environment.
• Proficiency writing detection logic in KQL or a comparable query language.
• Familiarity with MITRE ATT&CK and modern detection approaches.
• Scripting experience in Python, PowerShell or similar.
• Strong investigation skills across endpoint, identity, cloud and network telemetry.
• Self‑starter with clear written and verbal communication for technical and non‑technical audiences.
• Comfortable with AI and automation; exposure to OT security is a bonus.
• Relevant certifications (e.g., SC‑200, AZ‑500) are a plus.

Required skills

• SIEM platforms
• Endpoint detection tools
• Microsoft security ecosystem
• KQL (Kusto Query Language)
• MITRE ATT&CK framework
• Python scripting
• PowerShell scripting
• AI‑assisted automation
• Operational technology (OT) security (bonus)
• SC‑200 or AZ‑500 certification (optional)

What we offer

• Additional 5 days of leave per annum (MyDay).
• Opportunity to work on critical infrastructure protecting New Zealand’s energy future.
• Collaborative environment with a leading energy and telecommunications provider.