We are seeking an experienced Technical Security Architect to lead the design and implementation of secure, scalable, and compliant security solutions across cloud and enterprise environments. This role plays a pivotal part in shaping cybersecurity strategy, embedding secure-by-design principles, and ensuring alignment with industry standards and regulatory obligations such as APRA CPS234, the Essential Eight, and NIST CSF.
Working closely with executive leadership and cross-functional teams, the successful candidate will drive technical security initiatives across major programs, assess and guide cyber risk mitigation efforts, and influence architecture decisions at an enterprise level.
Due to the size of the team you will be required to be hands on and hold in depth technical conversations. The ideal person will be coming from a security engineering background and has solid engineering background.
Location: Melbourne
Salary: $220,000 - $250,000 inclusive of super
Key Responsibilities:
* Design and develop enterprise-wide security solutions in line with relevant regulatory requirements and industry best practices.
* Provide strategic and technical leadership on cybersecurity matters across enterprise projects, initiatives, and risk assessments.
* Co-develop and evolve the organisation's cybersecurity strategy, ensuring alignment with overarching business objectives.
* Ensure the security architecture practice aligns with both business goals and the organisation's technical direction.
* Establish, implement, and govern security engagement processes throughout the development lifecycle.
* Define security controls across AWS, Azure, and other cloud environments, ensuring secure integration with third-party services.
* Work closely with the wider architecture team as well as the security engineers to operate a secure by design model.
* Create and maintain reusable security design patterns to address common and emerging threats.
* Partner with key stakeholders—both internal and external—to address complex technical issues and provide informed guidance.
* Evaluate and recommend vendor solutions to combat evolving cyber threats.
* Support teams in the implementation of architectural controls that enhance security posture and operational efficiency.
* Ensure alignment between proposed solutions, regulatory frameworks, and the organisation's strategic priorities. Candidate Profile:
* 10+ years of experience in senior or lead technical roles, with at least 7 years focused on cybersecurity.
* Deep understanding of Australian regulatory environments, especially within financial services.
* Strong communication and stakeholder management skills, with the ability to translate complex security topics for non-technical audiences.
* Expertise in cloud security architecture (AWS and Azure), with experience deploying or integrating leading platforms such as Okta, Palo Alto, and Forcepoint.
* In-depth knowledge of Identity & Access Management (IAM) and Zero Trust principles.
* Familiarity with key security frameworks such as APRA, NIST, COBIT, ISO 27001, and the Essential Eight.
* Experience developing risk assessments and mitigation strategies, including reporting to senior stakeholders.
* Demonstrated experience in DevSecOps environments and CI/CD integration.
* Solid background in enterprise architecture frameworks such as TOGAF or SABSA (certifications are a plus).
* Industry-recognised certifications (e.g. CISSP, CRISC) and a strong understanding of cloud security best practices. If you are interested in this position, please do reach out to Sophie Garrison: Cyber Security Practice Lead -