Your trusted all Australian cybersecurity partner, providing forward thinking consultancy across offensive security and cyber advisory to industry leaders and global brands.ctrl:cyber remain pioneers in the industry, boasting a cutting edge Risk Operations Centre developed, refined and operated all within Australia since 2017.At Ctrl, cyber together goes beyond a mission—it's our way of leading the charge. It's about partnering with our clients, the broader industry, and like-minded innovators to carry real change. It's about building up our community and driving progress as a collective force. Advancing the industry requires everyone moving forward, together.Let's talk about the role:We're looking for an experienced Cloud Security Architect to join, who is based in either Perth, Brisbane and Adelaide. The role will be a mixture of hybrid/WFH and onsite with a key client. We're looking for industry-experienced professionals with at least 5 years' experience within the responsibilities below.Let's talk about your responsibilities:Key responsibilities will include:Development and execution of the enterprise-wide application and data security program and associated performance metrics.Review design documents, identify, and communicate potential cybersecurity gaps to project teams for remediation.Apply cybersecurity and privacy principles to organisational requirements (relevant to confidentiality, integrity, availability, authentication, and non-repudiation).Lead risk identification efforts and communication of the risks and mitigating controls to stakeholders to manage cybersecurity risks within the organisation.Research industry best practices and vendor cybersecurity capabilities to mitigate emerging threats.Provide application security services including application security scans, code reviews to ensure security code development, DevSecOps support, and cloud asset vulnerability management.Development and maintenance of the Cloud Security Posture Management capability for secure hosting of applications.Write position papers on cybersecurity topics such as cloud, application, and/or data security.Act as an escalation point for the first level SOC and Cloud Security Governance teams.Minimum Requirements:Five years of relevant experience in Secure-by-Design Application Development, DevSecOps, Application Security, Cloud Security.Certified as a Cybersecurity Professional (CISSP, CISM preferred or equivalent).Cloud Cybersecurity certifications (Azure preferred or AWS equivalent).Understanding of industry regulatory and compliance requirements like ISM, NIST, and ISO27001.Expert level in configuring and utilising computer protection components (e.g., hardware firewalls, servers, routers, as appropriate) in general but also in particular for applications, M365 and Azure/AWS cloud environments.Prior experience as a cloud engineer or architect building and implementing cloud technology in large scale environments favourable.
#J-18808-Ljbffr