## Cyber Security Engineer
## Position Overview
We are looking for an experienced and highly motivated Cyber Security Engineer to join our team and play a critical role in safeguarding our software systems, applications, and digital infrastructure. The successful candidate will be responsible for designing, developing, testing, and maintaining robust security solutions that are fully integrated into our development and operational environments. This role suits a technically adept professional with a strong background in secure software development, vulnerability management, and security architecture who thrives in a collaborative, fast-paced setting.
## Key Responsibilities
- Design, develop, and implement cyber security software applications and systems, ensuring they are fully integrated, well-documented, and aligned with organisational security standards
- Develop and enforce secure coding practices across the software development lifecycle, embedding security controls at every stage from design through to deployment
- Conduct comprehensive security testing, vulnerability assessments, and penetration testing on software, systems, and infrastructure to identify and address potential risks
- Collaborate closely with software developers and engineering teams to identify, prioritise, and remediate security vulnerabilities and coding weaknesses in a timely manner
- Participate in code reviews, offering expert security guidance and ensuring that development teams adhere to established security frameworks and best practices
- Design and maintain secure application programming interfaces (APIs) and libraries for use across software and application environments
- Assess the security posture of third-party software components, open-source libraries, and vendor integrations, providing recommendations to mitigate associated risks
- Perform binary and static code analysis scans on software applications to detect vulnerabilities before release into production environments
- Monitor, analyse, and respond to security incidents and threats across the organisation's systems, networks, and applications
- Develop, maintain, and continuously improve security policies, standards, and documentation to reflect evolving threat landscapes and regulatory requirements
- Support the integration of security tooling and automation into CI/CD pipelines to enable continuous security testing and compliance validation
- Liaise with internal stakeholders, including IT, compliance, and senior leadership, to provide clear reporting on security risks, incidents, and remediation progress
## Required Qualifications & Skills
- Bachelor's degree in Cyber Security, Information Technology, Computer Science, or a related discipline
- Demonstrated experience in a cyber security engineering or information security role, ideally within a complex enterprise environment
- Strong proficiency in secure software development practices and knowledge of common vulnerability frameworks such as OWASP Top 10 and CVSS
- Hands-on experience conducting vulnerability assessments, security testing, and code analysis using industry-standard tools
- Solid understanding of network security, identity and access management, encryption protocols, and security architecture principles
- Experience integrating security controls into DevSecOps and CI/CD pipelines
- Proficiency in one or more programming or scripting languages such as Python, Java, PowerShell, or Bash
- Familiarity with cloud security concepts and platforms, including AWS, Azure, or Google Cloud
- Strong analytical and problem-solving skills with the ability to assess complex security risks and communicate findings clearly to both technical and non-technical audiences
- Excellent written and verbal communication skills with a collaborative, team-oriented approach
## Preferred Qualifications
- Industry certifications such as CISSP, CEH, OSCP, CompTIA Security+, or equivalent
- Experience working within regulated industries such as finance, healthcare, or government
- Familiarity with Australian Privacy Act requirements, ISO 27001, NIST Cybersecurity Framework, or the Australian Cyber Security Centre (ACSC) Essential Eight
- Exposure to threat modelling methodologies and security risk management frameworks
- Experience with security information and event management (SIEM) platforms and endpoint detection and response (EDR) tools
## Why Join Us?
- Be part of a forward-thinking organisation that places cyber security at the heart of its technology strategy, giving you genuine influence over how security is designed and delivered
- Access ongoing professional development opportunities, including support for industry certifications, training programmes, and conference attendance
- Enjoy a flexible, hybrid working arrangement that supports a healthy work-life balance
- Work within a collaborative and inclusive team culture that values innovation, knowledge sharing, and continuous improvement
- Competitive remuneration package with clear pathways for career progression into senior and leadership roles
## Job Details
- Job Type: Full-time, Permanent
- Work Schedule: 8-hour shift
- Salary: $70,000 – $120,000 per year + Super
Job Types: Full-time, Permanent
Pay: $70,000.00 – $120,000.00 per year
Benefits:
Application Question(s):
- Are you currently in Australia?
- Are you looking for visa sponsorship?
- How many years of experience do you have?
Work Location: Hybrid remote in Sydney NSW 2000
