Who are we?
City FM Australia provides world-class facilities management and engineering solutions that deliver safe, successful and sustainable outcomes for our partners.
Our technology capability underpins everything we do—with in-house Application, Development, Cyber Security and Data teams driving innovation, efficiency and performance across the business.
The Opportunity
We’re looking for a skilled IT Security Engineer to join our Cyber Security team, playing a key role in protecting and strengthening City’s technology environment.
In this hands-on role, you’ll implement, administer and continuously improve cyber security controls across infrastructure, cloud, and applications. You’ll work across a broad security landscape—from SIEM and endpoint protection to vulnerability management and secure architecture—helping reduce risk and enhance resilience across the organisation.
Working closely with internal teams and external partners, you’ll contribute to proactive threat detection, incident response, and ongoing uplift of security practices and tooling.
Key Responsibilities
- Security Operations – Administer and optimise security platforms including SIEM, EDR, DLP, identity and network security controls
- Vulnerability Management – Perform vulnerability assessments and support remediation using SAST, DAST and CSPM tooling
- Cloud & Architecture Security – Support secure solution design (particularly in Azure) through risk and impact assessments
- Incident Response – Investigate, respond to and support resolution of security incidents, including forensic analysis
- Monitoring & Detection – Maintain and enhance monitoring capabilities to detect and respond to threats effectively
- Risk & Compliance – Support security risk assessments and alignment to frameworks such as ISO 27001 and NIST
- Security Tooling & Optimisation – Administer and continuously improve endpoint, network, identity and data protection technologies
- Collaboration – Work with internal teams, vendors and stakeholders to uplift security controls and practices
Experience & Expertise
Essential
- Proven experience in cyber security engineering, operations or similar role
- Hands-on experience administering security technologies such as SIEM, EDR, DLP and network security platforms
- Experience in vulnerability management practices and tools (SAST, DAST, CSPM)
- Experience performing security and risk assessments across internal and third-party systems
- Exposure to cloud security, preferably Microsoft Azure
- Experience with incident detection, investigation and response
- Knowledge of security frameworks such as ISO 27001 and/or NIST
Desirable
- Tertiary qualification in Cyber Security, Information Technology or related field
- Certifications such as AZ-500, SC-200, CCSP, CEH or similar
- Experience with DevSecOps practices and integrating security into delivery pipelines
- Experience with identity management (IDP) and advanced threat protection tools
- Knowledge of digital forensics and disaster recovery practices
To be successful, you will bring:
- A hands-on, proactive approach to cyber security with a strong problem-solving mindset
- The ability to balance operational delivery with continuous improvement initiatives
- Strong communication skills and the ability to work across technical and business teams
- A passion for staying ahead of emerging threats and improving security posture
What’s on offer:
- Opportunity to work across a broad and modern security technology landscape
- Full time permanent role within a high-performing IT team
- Hybrid working model (WFH 2 days a week)
- Free onsite parking when in office
- Supportive, collaborative and people-first culture
If you would like to be part of a growing Australian Facilities Management business, we would love to hear from you.
Please apply by sending an updated resume and cover letter. Only short-listed candidates will be contacted by phone.
City is an Equal Opportunity Employer who supports and encourages the diverse needs of each individual Team Member.
City does not accept unsolicited resume referrals from Recruitment Agencies.