EL1 Security Architect, Data Standards Body
Join to apply for the EL1 Security Architect, Data Standards Body role at Commonwealth Treasury
5 days ago – Apply now.
This is an exciting opportunity to work in the Data Standards Body (DSB) and across government to deliver high quality regulatory standards. The DSB supports the Data Standards Chair who is responsible for making the Data Standards that are necessary for the effective operation of Australia's Digital ID System and the Consumer Data Right (CDR) regulatory frameworks. The DSB is part of Treasury's Digital, Competition and Payments Division in Markets Group.
As a security architect, you will have a hands‑on role working with product and policy managers in drafting and co‑designing changes to the Data Standards, in accordance with policy priorities and industry needs. You will work with a range of government and industry stakeholders to support the Data Standards Chair to deliver on policy objectives which the Data Standards support, contributing directly to the stewardship and governance of standards that support Australia's Digital ID system and CDR. This includes assessing and prioritising changes to the Data Standards to ensure they remain in line with policy, market and security requirements.
Key Responsibilities
* Designing end-to-end security architectures for enterprise applications, cloud workloads, networks and data platforms.
* API design that facilitates the efficient, safe and secure transfer of data.
* Identity federation architecture, OpenID Connect, SAML, trust frameworks.
* Identity proofing, attribute verification, digital credentials and wallets, and lifecycle management (SCIM, token lifecycle, etc).
* Cybersecurity protocols (OAuth2, OIDC, JWT, TLS, mTLS), biometrics and authentication technologies, including cryptographic key management.
* Data portability initiatives such as open banking, open finance and open energy and respective schema design.
* Integration, particularly but not limited to with government registries.
* Scalability, performance and availability.
* Ensuring solutions comply with security policies, regulatory standards, and industry frameworks (e.g., NIST, ISO 27001, CIS, SOC 2).
* Producing architecture diagrams, threat models, security patterns, and reference architectures.
* Conducting security risk assessments and threat modelling for new or existing systems.
* Identifying security gaps and recommending mitigation strategies, control enhancements, or architecture changes and aligning with relevant international standards to ensure interoperable and best practice standards.
* Translating complex business, user and operational requirements into practical and secure technical solution designs fit for a regulatory environment, and which balance long‑term sustainability with delivery constraints.
* Ensuring all solution designs align with enterprise architecture principles, patterns and standards, comply with overarching legal and policy positions and norms for standards or requirements literacy.
* Guiding engineering and delivery teams to implement solutions in line with approved architectures, offering direction on technical decisions, integration approaches and issue resolution.
* Input to consultation and delivery processes for the making of the Data Standards instruments in accordance with set timeframes and processes.
* Working collaboratively across the DSB, other agencies, and stakeholders with limited direction against established priorities and practices to deliver quality outcomes and relationships.
* Confidently leading inter‑agency discussions with engineers, architects, and policy teams through problem exploration and solution design.
Desirable Qualifications / Experience
* The ability to quickly understand the policy and data standards landscape for Digital ID and/or the Consumer Data Right.
* Demonstrated experience conducting threat modelling, risk assessments, and secure design reviews.
* Ability to engage collaboratively to develop technical requirements or standards, and develop change impact assessments which balance competing views and align to government policy objectives.
* Strong written and oral communication skills, including the ability to lead technical analysis and discussion across a broad range of stakeholders including through public consultation.
* Experience in maintaining requirements libraries and reference architectures or models.
* Qualifications in IT, engineering, cyber security, data or information management or another relevant field (desirable).
* Professional qualifications or knowledge are desirable across one or more: Architecture and design (e.g. TOGAF), Data and security standards (e.g. ISO/IEC 27001, CISSP, CDM), API and data exchange (e.g. JSON Schema/OpenAPI specifications), Identity and trust services (e.g. FIDO, OIDC/OAuth2, SAML federation, CIAM).
Seniority level
Not applicable
Employment type
Full-time
Job function
Administrative, Analyst, and Other
Industry: Government Administration
Location: Sydney, New South Wales, Australia
Salary: A$1,100.00 – A$1,200.00 per year
Referrals increase your chances of interviewing at Commonwealth Treasury by 2x
#J-18808-Ljbffr