Principal Cybersecurity Engineer
Location:
Canberra, ACT
Employment Type:
Permanent
Security:
Australian Citizen – NV2 clearance (or eligible)
About the Organisation
Our client is a mission‑driven technology organisation delivering defence‑grade, high‑security systems to Australian government, national security, and critical infrastructure sectors.
The organisation specialises in secure, sovereign data platforms and mission‑critical environments, operating where security, resilience, and compliance are paramount. The Australian operation is in a significant growth phase, building long‑term capability aligned to evolving defence and national security requirements.
This role offers the opportunity to work on systems of national importance, influencing security architecture from the ground up.
About the Role
We are seeking an experienced Principal Cybersecurity Engineer to lead the design, implementation, and oversight of cybersecurity architecture across networks, platforms, and on‑premise environments.
This is a senior, hands‑on technical role with responsibility for ensuring systems meet Australian defence and government security standards, including the ASD Information Security Manual (ISM) and Authority to Operate (ATO) requirements.
Reporting directly to senior Australian leadership, you will act as the technical authority for cybersecurity, working closely with engineering and operations teams to embed security into system design, delivery, and operations.
Key Responsibilities:
Cybersecurity Architecture & Governance
* Define and enforce cybersecurity standards aligned with ASD ISM, Essential Eight, NIST, and ISO/IEC 27001
* Lead the design and implementation of security architecture for defence‑aligned, high‑assurance systems
* Provide technical leadership and influence architecture decisions across platforms and infrastructure
ATO & Compliance
* Support the preparation, submission, and maintenance of Authority to Operate (ATO) artefacts
* Develop and maintain security documentation, risk registers, and evidence packs
* Conduct security risk assessments and ensure ongoing compliance with Australian security frameworks
Security Engineering & Automation
* Implement and validate technical security controls across classified and restricted environments
* Design and manage security automation pipelines using tools such as Ansible, Terraform, and Packer
* Develop and deploy tooling to automate remediation, hardening, and vulnerability management
Threat Detection & Response
* Conduct vulnerability assessments, penetration testing, and security audits
* Monitor and analyse security logs and events to detect, assess, and respond to threats
* Lead the investigation and resolution of complex security incidents
Collaboration & Advisory
* Work closely with engineering teams to implement secure authentication, encryption, and access controls
* Evaluate emerging cybersecurity technologies and recommend improvements
* Clearly articulate security risks, strategies, and solutions to technical and non‑technical stakeholders
The Successful Candidate
You will be a senior cybersecurity professional with strong technical depth and experience operating in high‑security, regulated environments.
Required experience and skills include:
* 6+ years' experience in cybersecurity engineering or architecture, ideally within defence, government, or critical infrastructure
* Strong knowledge of Australian security frameworks, including ASD ISM and Essential Eight
* Experience supporting or maintaining Authority to Operate (ATO)
* Strong expertise across Linux and Windows systems, networking security, and cloud platforms (AWS, Azure, GCP)
* Hands‑on experience with security automation and infrastructure‑as‑code tools (Ansible, Terraform, Packer)
* Proficiency in Java, with scripting skills in Python or Ruby highly regarded
* Strong communication skills and the ability to influence security outcomes across teams
* Australian citizenship with eligibility to obtain and maintain NV2 security clearance
Desirable Experience
* CISSP or equivalent cybersecurity certification
* ASD‑recognised cybersecurity credentials
* Experience working in classified or highly restricted environments
* Familiarity with SIEM, logging, and monitoring platforms
* Exposure to DevSecOps practices
What's on offer?
* Permanent role working on mission‑critical, defence‑aligned systems
* Canberra‑based position within a highly trusted, technically rigorous environment
* Competitive salary package including:
* Annual performance incentive
* Private health allowance
* Health and wellness allowance
* Professional development and subscriptions
* Salary packaging options
* 5 weeks of annual leave
* Opportunity to act as a principal‑level security authority shaping long‑term capability