OUR VALUE PROPOSITION
At RSM, our purpose is to instill confidence in a world of change for both our clients and our people.
RSM Australia supports a people-centric and collaborative culture where we are committed to empowering and developing you. As a leading professional services firm, we connect you to an extensive network of global resources and invest in your future. We value the meaningful work that you do and encourage you to be a part of the change.
Our value proposition is our commitment to you; it highlights the experiences, benefits, and value that you can expect as part of RSM. This is underpinned by our three values – integrity in everything that we do, supporting clients everywhere, and developing and valuing everyone.
Who we are:
RSM Australia is a member of RSM, the world's 6th largest network of audit, tax and consulting firms. We are an award-winning professional services firm with over 100 years experience supporting Australian businesses. We believe in putting people first and we are proud to have developed a work culture that fosters growth, collaboration and success.
About the role:
Information Security Architect
Location: Melbourne (preferred), Sydney, Perth or Brisbane
About the role
Lead secure‑by‑design across the Firm.
RSM is seeking an experienced Information Security Architect to establish and embed architectural guardrails, reusable patterns, and secure‑by‑design practices across enterprise, cloud, and hybrid environments. In this hands‑on, highly collaborative role, you will shape the Firm's security architecture foundations, uplift Zero Trust maturity, integrate threat modelling into delivery, and provide board‑ready visibility of architecture risk and maturity.
You will partner closely with Enterprise Architecture, Engineering, Operations, GRC, Privacy and business stakeholders to ensure patterns are practical, consumable, and consistently adopted.
As the Firm's central security architecture authority. You define principles, patterns, and standards, and you will establish architecture governance in collaboration with Enterprise Architecture, maturing it over time as capability increases. You translate business risk appetite into architecture decisions, ensure secure design is embedded early, reduce technical debt, and publish executive dashboards to measure adoption and maturity.
This role is equal parts strategy, design, governance, and advisory, with a strong expectation of practical, usable outputs.
Key Responsibilities
Establish / Embed / Operationalise (Architecture Foundations)
* Develop and publish reusable architecture patterns for identity, segmentation, encryption, key management, secrets, logging, telemetry, and secure data flows.
* Lead Zero Trust architecture across users, devices, network, data, workloads, and trust boundaries.
* Define cloud and hybrid architecture patterns aligned with AWS/Azure Well‑Architected – Security and ACSC guidance.
* Maintain the architecture standards library and conformance guidance.
Design Lifecycle Integration
* Embed threat modelling (OWASP, STRIDE, AI/ML-aware) into solution design and major change initiatives.
* Design and implement architecture governance — including mechanisms such as an Architecture Review, design gates, and exception processes — and mature it over time as capability increases.
* Integrate Privacy‑by‑Design requirements into patterns and design artefacts to support regulatory and data‑handling obligations.
Identity & Data Protection Architecture
* Define enterprise identity models, federation, trust relationships, and privileged access patterns (JIT, tiering, emergency access).
* Develop data protection patterns including classification, encryption, key management and secure data flow designs (aligned with Data Governance and AI Strategy).
Governance, Risk & Third‑Party Architecture
* Map architecture evidence to ISO/IEC 27001:2022 Annex A and support SoA updates.
* Provide architectural input into supplier due diligence, shared responsibility models, and design‑time third‑party risk assessments.
* Ensure architecture governance aligns with enterprise strategies and security objectives.
Measurement & Executive Reporting
* Create dashboards for pattern adoption, Zero Trust pillar scores, threat‑modelling coverage, cloud baseline coverage, and exceptions.
* Publish board‑ready views of design risk, maturity trends, and priority gaps.
Continuous Improvement
* Benchmark against ACSC, NIST, ISO, CSA and industry architectural trends; evolve patterns and governance accordingly.
* Provide input into capability planning and future hiring needs as architectural maturity increases.
* Zero Trust maturity uplift across identity, segmentation, network and data protection.
* Cloud baseline uplift with increased adherence to secure landing zone patterns.
* Audit‑ready architecture evidence mapped cleanly to ISO/IEC 27001:2022 Annex A.
About you:
Essential Requirements
* Degree in Information Security, Computer Science, Systems Engineering or related field.
* Formal training in Security Architecture and/or Systems Security Engineering.
* Proven experience designing and implementing enterprise security architectures across cloud, hybrid, and on‑prem environments.
* Hands‑on leadership in Zero Trust, network segmentation, identity architecture, and data protection.
* Demonstrated experience embedding threat modelling and secure design principles.
* Experience running architecture governance, review boards, and exception processes.
* Strong communication skills, including board/executive reporting and translating risk into technical controls.
* Experience designing and maintaining architecture dashboards using Power BI, Tableau, Excel or GRC platforms.
Desirable
* Certifications such as SABSA, TOGAF (security), AWS Security Specialty, Azure Solutions Architect Expert, Google Professional Cloud Security Engineer.
* Experience designing Zero Trust, cloud landing zones, and segmentation in large/complex environments.
* Experience integrating architecture with DevSecOps, CI/CD and IaC controls.
* Consulting or advisory experience in security architecture transformation programs.
* Experience supporting tool selection and integration (security and privacy technologies).
* Excellent ability to communicate trade‑offs and present technical concepts to non‑technical audiences including boards.
Ready to architect the future of security at RSM? Apply now.
Eligibility to work permanently in Australia is required for this role. Unfortunately, visa sponsorship is not available for this opportunity.
Life at RSM:
RSM provides a great environment to build skills and confidence and we help our people achieve their best. We are trusted advisors to our clients, so it is critical for us to find the right people for the job on offer. Our network of offices across Australia and around the world allow us to offer a personal service to all our clients regardless of where they are
Working for RSM entitles everyone to a wide range of leading health, wellness financial and lifestyle benefits.
How to apply:
Please click on the "apply" button and complete our online application form.
Agencies, thank you for thinking of us, but our recruitment is managed internally, and we will reach out to our preferred suppliers if we need assistance.
#J-18808-Ljbffr