Our client is an ASX listed business, currently focused on uplifting cyber capability and maturity within one of their key business units.
If you are used to working in highly technical environments and can deal with senior stakeholders and engineering teams then it could be a great fit.
This role is going to offer variation and challenge.
The Role:
We need an experienced Security Architect who can drive a security first approach within the digital teams. With a lot of innovation and fast moving technology projects, this architect will help to ensure the right strategy and guidance is in place during rapidly changing situations.
In this role, you will provide subject matter expertise and leadership with in-depth cybersecurity experience, across a range of technology platforms and systems, to maximise security outcomes.
You will be working closely technical teams and Cyber colleagues to lead the deployment of security services and security controls across all functional areas.
You will deliver security outcomes in line with security standards and industry best practices, and will empower the business to uplift controls maturity and reduce cyber security risk.
Key Responsibilities:
- Get a solid understanding of the landscape and set a Security Architecture strategy with the head of security
- Provide technical security expertise and advice to the tech teams
- Align Cyber service capabilities to the Digital environment, and provide oversight of technical solutions based on Cyber Security requirements and adherence to the Cyber Security policy, standards and controls
- Assist with the selection and adoption of appropriate security controls to manage Digital cyber risk exposure
- Provide input to cyber Security Architectural reviews for new and inflight Digital solutions, to ensure best practice DevOps and Cloud configuration cyber outcomes
- 8 + years experience in technical design and architecture
- Current or previous experience in configuring, operating, designing and architecting security solutions for business and technology initiatives
- Demonstrable experience working with public cloud (AWS, Azure, GCP), containers, Kubernetes and related technologies
- Experience with security engineering, Devsecops, infrastructure-as-code, CI/CD, automation, and application development desirable
- Background in understanding Application security, API’s and Software preferable
- Familiarity with any of the following: SABSA, NIST 800-53, Open FAIR, MITRE ATT&CK/D3FEND, threat modelling and related methodologies or frameworks