Description

As a Cyber Security Engineer reporting to the Cyber Security Lead, you will be responsible for maintaining the integrity and confidentiality of the organisation’s data and information systems. You will be expected to proactively look for ways to enhance the security posture of the Branch’s cloud-hosted solutions with members of the Technology Development team. This role is critical in designing, implementing and improving security controls across cloud and DevOps environments. You will contribute to securing CI/CD pipelines, automating security controls using Infrastructure as Code, and ensuring secure configuration of cloud platforms. While supporting monitoring and incident response activities, the role is primarily focused on embedding security into systems and processes to prevent vulnerabilities and reduce risk.

About the Client

A public sector client focused on competition, regulation, and consumer protection. The organization provides a collaborative and inclusive work environment, opportunities for professional growth, and the chance to contribute to high-impact national outcomes through policy development, enforcement, and advocacy.

Contract Details

Estimated start date: Monday, 15 Nov 2026

Initial contract duration: 12 months

Number of extensions: 2

Experience level:  Senior – APS 6 equivalent

Location of work: QLD, WA, ACT, VIC, NSW, NT, SA, TAS

Working arrangements:  Hybrid. The client has a requirement to attend the office for 40% of your time each week.

Security clearance: Must be an Australian Citizen able to obtain Baseline

Duties and Responsibilities:

• Security Engineering & Implementation: Design, implement and configure security controls across cloud and enterprise environments, including Microsoft Sentinel, Microsoft Defender suite, Entra ID, and endpoint security controls. Work with Architecture team to embed security into solution design and implementation.
• DevSecOps & Pipeline Security: Integrate security into CI/CD pipelines, including secure pipeline design, parameter and variable validation, and implementation of code scanning tools. Identify and remediate security risks across the software supply chain.
• Automation & Infrastructure as Code (IaC): Develop and manage security controls using Infrastructure as Code and scripting to support scalable, consistent and automated deployments.
• Proactive Monitoring & Detection Engineering: Configure, optimise and maintain security monitoring platforms, including development and tuning of analytics rules and automated playbooks in Microsoft Sentinel. Continuous monitor environments for vulnerabilities and malicious activity.
• Vulnerability & Dependency Management: Identify, assess and prioritise vulnerabilities based on risk and business impact. Regularly review and manage third-party libraries and dependencies to ensure they are up to date and free from unknown vulnerabilities.
• Security Tool Management: Configure, maintain and optimise security tools, while identifying opportunities for automation and orchestration to improve detection, investigation and response capabilities.
• Incident response: Support the coordination of, and response to, major cyber security incidents and restoration following a cyber security incident. Conduct root cause analysis and remediation actions for vulnerabilities and incidents. Implement measures to prevent future occurrences.
• Policy enforcement: Ensure the branch’s cyber security policies and procedures are being adhered to by conduction regular audits and checks.
• Reporting: Manage threat intelligence feeds and ensure incorporation of intelligence data into use cases. Develop threat advisory reports based on threat intelligence data as input into threat hunting campaigns and proactive remediation activities.
• Threat Hunting: Plan, execute and manage threat hunting campaigns and support the development of alerting rules and use cases within security platforms based on completed campaigns and threat analysis.

Please prepare a statement of claims (less than 500 words) addressing the selection criteria. When preparing your statement of claims, please take into consideration the role and duties, and detail instances from your past that demonstrate how you meet the selection criteria.

• Hands-on cyber security operations and engineering, including security monitoring, incident response, threat analysis, and implementation of security controls in enterprise environments.
• Integrating security into CI/CD pipelines, particularly in Azure DevOps, including secure pipeline design, parameter/variable handling, and use of code scanning tools.
• Implementing and configuring security controls in Microsoft Azure, including services such as Microsoft Sentinel, Microsoft Defender suite, Entra ID (conditional access), and Intune.
• Infrastructure as Code (IaC) and automation, using tools such as Bicep, ARM templates, or Terraform, along with scripting (PowerShell/Python) to deploy and manage security controls.
• Problem-solving skills, demonstrating analytical and critical-thinking abilities; and the capacity to troubleshoot and resolve issues swiftly, sometimes under pressure.
• Translating business requirements into secure technology solutions and evaluating alternative technologies where appropriate.