Expression of interest_ Advanced Cyber Intelligence and Response Team (ACIRT) Consultant

We Are Fujitsu

We use technology to make happier lives. We are a global leader in technology and business solutions that transform organizations and the world around us. We have a long heritage of bringing innovation and expertise, continuously working to contribute to the growth of society and our customers.

About the role

We are looking for an Advanced Cyber Intelligence and Response Team (ACIRT) Consultant. The ACIRT is Fujitsu Cyber's advanced cyber detection and response capability, designed to blend intelligence-led insight with operational cyber defence and incident response.

ACIRT operationalises threat intelligence into detection engineering, threat hunting and DFIR, enabling Fujitsu Cyber to identify, disrupt and respond to adversary activity across customer environments with speed, precision, and confidence.

The ACIRT capability operates across:

• proactive intelligence and research
• continuous detection and monitoring uplift
• active threat hunting
• complex incident response and digital forensics

This integrated model ensures intelligence is not static, but directly informs detections, response actions and customer risk decisions. This position offers hybrid working.

Location: Canberra or Melbourne (preferred) but flexible across Wellington or Auckland, New Zealand location as well.

Responsibilities and Accountabilities

The key responsibilities and associated duties of the position fall into the following main areas:

Detection Engineering

• Design, build, and maintain detections across SIEM, XDR, and related security platforms.
• Manage log and telemetry pipelines, including ingestion, normalisation, and enrichment.
• Tune detections to minimise false positives/negatives and improve detection fidelity.
• Translate incident and threat‑hunting insights into enhanced detections and coverage.

Threat Intelligence

• Produce strategic, operational, and tactical threat intelligence.
• Analyse adversary campaigns, malware, and tradecraft to inform defensive strategy.
• Manage intelligence platforms and external feeds, ensuring relevance and quality.
• Develop intelligence products such as threat profiles, reports, and executive briefings.
• Operationalise intelligence into detections, hunts, and response actions.

Threat Hunting

• Conduct advanced threat hunts across endpoint, network, cloud, and identity telemetry.
• Identify stealthy, low‑signal adversary behaviours and document hunt findings.
• Convert hunt outcomes into new detections, intelligence insights, and response improvements.

Threat Research

• Perform research on emerging threats, tools, and adversary behaviours.
• Conduct technical malware and campaign analysis and convert findings into defensive controls.
• Contribute to internal knowledge bases, best practices, and thought leadership.

Incident Response & Digital Forensics

• Lead or support complex incident response engagements.
• Perform forensic analysis across endpoint, network, cloud, and identity environments.

Requirements and Experience

To succeed in this role you will have:

• Demonstrated experience in cybersecurity operations, incident response, detection engineering, threat intelligence, or threat hunting at a senior practitioner level.
• Experience supporting or leading security incidents, investigations, or high-impact security events, either directly or in an advisory capacity.
• Proven ability to work across multiple domains, translating intelligence, telemetry, and incident learnings into practical security outcomes.
• Experience collaborating with SOC teams, engineering teams, or operational technology teams to uplift security capability.
• Backgrounds in IT operations, systems or network engineering, intelligence analysis, risk advisory, or technical consulting that demonstrate strong analytical, investigative, and stakeholder engagement skills may be considered relevant.
• Experience engaging with customers or stakeholders in a consulting or advisory capacity, including the ability to explain complex technical issues clearly.
• Exposure to developing or improving repeatable services, processes, or operational practices, rather than only one-off technical tasks.
• Ability to operate effectively under pressure, manage ambiguity and make sound decisions during time-critical situations.

Desired Experience, Other Knowledge & Attributes

• Familiarity with SIEM, XDR, SOAR, and threat intelligence platforms commonly used in managed security operations.
• Experience contributing to service design, service improvement, or capability uplift initiatives.
• Contribution to thought leadership through research, blogs, presentations, or industry engagement.
• Demonstrated interest in continuous learning, mentoring, and professional development.

Why Fujitsu?

We are an organization with a strong set of values and a history of respecting fairness and equality, whilst promoting diversity, equity, and inclusion. We constantly push ourselves to do better and strive to bring together a diverse mix of perspectives and talents in an inclusive environment, where we encourage our people to bring their full selves to work. We call this Be Completely You.

• We put people first. We believe in the power of diversity to drive innovation and our AWEI (Australian Workplace Equality Index) Gold Employer status, and Rainbow Tick certification for LGBTI+ inclusion show that we value an inclusive culture.
• We offer tailored career paths across our global organization to support your professional and personal growth.
• Our customers trust us. We have an excellent reputation across the region and globally.
• Best in-class reward and recognition programs flexible work, volunteering leave, and more.
• We live our values of aspiration, trust, and empathy, all day, every day.

Commitment to Diversity, Equity and Inclusion

As an inclusive employer, Fujitsu aims to recruit a diverse range of talents to help us achieve our purpose. In line with our diversity, equity, and inclusion strategy, we highly welcome applications from women and gender-diverse people; Aboriginal and Torres Strait Islander people; Māori and Pacific people; LGBTI+ people; people with a disability; culturally and linguistically diverse people; veterans, Australian Defence Force (ADF) and emergency responders. Transgender and gender-diverse applicants can request a copy of our Frequently Asked Questions to assist with the recruitment journey.

If you don't tick every box in this job description, please don't rule yourself out. Research suggests that underrepresented groups tend to only apply if they meet every requirement. We focus on hiring people who value inclusion, collaboration, adaptability, courage, and integrity, rather than ticking boxes so if this resonates with you, then please apply. For more information, please email careersapac@fujitsu.com.

Search Firm Representatives – PLEASE READ:

Fujitsu does not accept unsolicited assistance from search firms for employment opportunities. All CVs or resumes submitted by search firms to any employee at our company without a valid written agreement in place for this position will be considered the sole property of our company. No fee will be paid if a candidate is hired by Fujitsu due to an agency referral where no existing agreement is in place with the Fujitsu Talent Acquisition Team. Where agency agreements are in place, introductions must be through engagement by the Fujitsu Talent Acquisition Team.