Cybersecurity Analyst

Easygo is an Australian technology powerhouse behind global brands Stake, KICK, and Twist Gaming. As we continue scaling our presence across Serbia and Europe, we’re building a brand-new Cybersecurity function locally — and we’re looking for Cybersecurity Analysts to help shape it from the ground up.

This is an opportunity to join early, influence how things are built, and work on security challenges at global scale alongside teams in Australia and across multiple regions.

You won’t be joining a large established SOC where processes already exist — you'll help create them.

We’re looking for curious and analytical people who enjoy solving problems, investigating security signals, and understanding how systems work beneath the surface.
In this role, you'll contribute across security monitoring, incident response, threat hunting, and continuous improvement initiatives, helping protect products and infrastructure used by millions of users worldwide.

You’ll join a newly established Cybersecurity team in Serbia, working closely with our Cybersecurity Engineering, IT, and Platform teams across the globe. 

This role operates on a shift model, helping provide extended security coverage alongside our Melbourne-based team. You'll begin with a structured onboarding period before gradually transitioning into the shift rotation.
We work in a hybrid setup, with team members typically spending at least three days a week in our Belgrade office during regular business hours. As part of the team, you'll participate in a rotating schedule that supports continuous security operations.

• →Monitor and investigate security events across SIEM, EDR, email security and other security platforms
• →Participate in incident response activities, helping identify, contain and resolve security incidents
• →Conduct proactive threat hunting activities and investigate suspicious behaviour across systems and environments
• →Contribute to improving detection quality through alert tuning, rule optimisation and continuous improvement initiatives
• →Partner with Cybersecurity Engineering, IT and Platform teams to strengthen security controls and reduce risk
• →Support vulnerability management activities and help improve overall security posture
• →Maintain clear documentation, investigation notes and operational processes
• →Help shape and build a growing Cybersecurity function as we continue scaling in Europe

• Minimum 3+ years of experience in SOC, Security Operations, Incident Response or Cybersecurity Analyst roles
• Experience working with SIEM tools and investigation workflows — platform-agnostic thinkers strongly preferred
• Experience using EDR platforms and analysing endpoint activity
• Understanding of common attack techniques including phishing, malware, credential theft and lateral movement
• Familiarity with incident response processes and playbooks
• Knowledge of MITRE ATT&CK framework
• Comfort using AI tools as part of your day-to-day security workflow
• Strong written English communication skills
• Ability to work shifts and in structured operational environments

• Threat hunting experience
• Experience building or tuning detections
• Experience with security tooling beyond SIEM/EDR
• Scripting experience (Python or PowerShell)
• Relevant certifications such as Security+, CySA+, SC-200, GCIH or similar

• Tool-agnostic — you understand the fundamentals, not just the interface
• Open to and actively using AI in your security work
• Calm under pressure and comfortable making decisions with incomplete information
• Detail-oriented and highly organised
• Interested in building processes and specialising over time — whether toward detection engineering, threat hunting, or beyond
• Someone who wants to be part of a team