• 12 Month Contract + 12 Month Extension
• NV1 Clearance, or Baseline Clearance (upgrade to NV1)
• Sydney or Canberra opportunity + Flexible WFH 3 days per week

Our Client, a large Federal Government Department with an office in Sydney CBD and Canberra City is seeking an expereinced IT Seecurity Architect for a long term contract. As part of setting up an Architecture Governance Framework, it has been identified that a Security Architecture Framework also needs to be set up. To achieve this it is necessary to engage an IT Security Architect to establish and maintain the Architecture.

The IT Security Architect will have the following responsibilities:

• Development of security architectural methods and frameworks in conjunction with relevant teams;
• Provide security architecture services for projects to provide security specific advice across a wide range of tech areas;
• Ensure the correct security measures and controls are in place and maintained in the lifecycle of the solution;
• Ensure that solutions adhere to security policies and standards;
• Support solutions development to ensure that solutions are secure by design;
• Assist with development of the Security Service Catalogue;
• Develop security artefacts for cloud environments;
• Assist in determining the baseline security configuration standards for systems (especially cloud-based);
• Work closely with selected security vendors.

Essential skills

• Five+ years of experience in an IT Security Architect or similar role developing and using security architecture methodologies;
• Demonstrated experience in securing on-prem and cloud implementations to PROTECTED standards for workloads and data;
• Demonstrated experience working with PROTECTED systems and in their integration with cloud services;
• Demonstrated performance of security design/architecture reviews, code reviews, and penetration tests of large applications, systems and/or networks;
• Detailed knowledge of OWASP Top 10 and associated mitigation strategies;
• Detailed understanding of design and security in web-based architectures including Single Page Applications and API-oriented architectures;
• Understanding of, and preferably experience in implementing Zero-Trust principles;
• Knowledge of securing on-prem and cloud infrastructure systems including Microsoft and Linux oriented architectures;
• Knowledge of security standards and frameworks such as PSPF, ISM, ISO 27000, NIST and SOC2;
• Proven track record and strong experience in security related technology design and implementation including domains such encryption, access and identity management, vulnerability management;
• Experience with Microsoft and AWS cloud solutions that includes the security controls offered within the relevant cloud context, and knowledge of third-party products that would contribute to the securing, governance and operations related to a Microsoft and/or AWS cloud environment;
• Experience overseeing remediation of vulnerabilities and defining security requirements and a proven track record of working with infrastructure and development teams to build secure solutions.

How to Apply

For a copy of the full job description, including the application instructions please get in touch with Alison at the Recruitment Hive by clicking the Quick Apply button. Alternatively, you can reach Alison on (02)6299 1006 to discuss further.

Applications close: 06 May at 2:00 pm

No response to selection criteria is required for this RFQ.

Job ID: AC 9267