Security (Information & Communication Technology)
Government - Federal (Government & Defence)
Full time ASIC is seeking a full time Senior Data Security Engineer/Architect to join their Cyber Security Team.Work with a high performing & collaborative team and gain industry certification in a data lake security architecture, or a cloud data-cluster platform security architecture certification such as Databricks.Permanent position based in Sydney or Melbourne.
Other locations considered.A future with ASIC means that your work will contribute to ASIC's vision for a fair, strong and efficient financial system for all Australians.
We value what you will bring.
We value those with sharp, analytical minds and are open to challenging the way things are done.
The teamCyber Security provides a wide range of services including security architecture & design, incident response and cyber assurance for ASIC.
We make use of the latest security technology with an increasing focus on automation and analytics to secure and support ASIC on its journey to be a 'best in class regulator supporting the Australian financial markets.
The roleRole Purpose: As a Senior Data Security Engineer / Architect within the Cyber Security team, you will have the opportunity to transition from data engineering to data security architecture and provide leadership for secure data designs, implementation, integration, and oversight of cloud-based and hybrid systems' data solutions with an emphasis on facilitating business operations.
As part of the role, you will also support other architectural teams and the Cyber Uplift & Transformation Programs of work.
You will be accountable for: Working as an internal customer-facing specialist leading in-depth technical data assessments including security aspects with solution architects, data scientists, developers, IT administrators, IT management, and business stakeholders to ensure the delivery of secure data solutions.Defining technologies, data security guardrails, and operating protocols that protect data hosted in the cloud from loss, inappropriate alteration, or misuse.Assessing the completeness and effectiveness of data security controls and solutions to identify capability gaps, security weaknesses and potential attack vectors.Working with data solution architects to enhance the guardrails and controls on the existing data platforms and solutions.Contributing to the Data Security architecture principles, patterns, roadmaps, frameworks and building blocks.Coordinating and facilitating the onboarding of data solutions into the SOC threat monitoring program, including identification of the solution-specific attack vectors.Creating and maintaining documentation including solution designs, assessment reports and architectural artifacts.Assisting the Cyber Security Team Leads with the continual improvement of the cyber security tooling, processes, culture, and service provision.About youA tertiary qualification and/or equivalent experience in a cyber security role with demonstrated experience as a data security engineer or architect.Demonstrated knowledge & experience in (three or more of):Creating secure data design patterns for Databricks, PowerBI, data APIs and AI/ML technologies.The effective use of data lake, Databricks, PowerBI, data APIs and AI/ML technologies.Designing and implementing data controls including security controls for Azure/AWS; Oracle, MS SQL and other traditional databases, and for data warehouse technologies.Prior experience in the development of best practices in data management.Build secure architecture of Data & Analytics tools, and platforms.Willing to learn and implement ACSC ISM data security controls into data architecture practices.Familiarity with visualisation tools such as Power BI.Familiarity with pipeline automation tooling.Ability to understand and integrate security practices into data architecture.An awareness of Microsoft Purview DLP & IRM experience will be an advantage.A clear understanding of enterprise-scale cloud and hybrid infrastructure.Awareness of security frameworks applicable to Australian Government entities, including the Protective Security Policy Framework (PSPF), the Information Security Manual (ISM), and the ASD Essential Eight.Understand security frameworks and standards including the NIST standards, and the ISO 27001 standards.Technical aptitude and the experience to continually learn new security technologies and understand relevant security market trends.Demonstrable skills in assessing, analysing, and resolving complex client and stakeholder related queries, utilising all relevant sources of information, media and stakeholder channels, data, reporting, systems and/or databases.Excellent interpersonal and consultative skills.Ability to effectively present complex information to project and senior level audiences both verbally and in writing.Ability to work independently with limited supervision and be accountable for outcomes.Experience working collaboratively with multifunctional project teams, building, and maintaining productive working relationships.Formal data engineering certifications focusing on Databricks, AWS and Azure are desired but not essential.About ASICASIC is Australia's corporate, markets, financial services and consumer credit regulator.
Our vision is for a fair, strong and efficient financial system for all Australians.
A future with ASIC means that your work will contribute to achieving ASIC's vision.
ASIC is an equal opportunity employer seeking people who want to make a difference.
ASIC is committed to a diverse and inclusive workplace where the very best talent in Australia chooses to work.
Applications from people of all ages, cultural backgrounds, abilities, LGBTIQ+ identity, and people of Aboriginal and Torres Strait Islander descent are encouraged to apply.
To work with us, you need to be an Australian citizen, and be prepared to complete an ASIC Suitability and Baseline Assessment which is issued by ASIC's Security team.
The applications to this role close on 25 November 2024.
#J-18808-Ljbffr