Overview Join Tyro Payments as a Security Engineer . This role sits in our cybersecurity team and focuses on certificate lifecycle management, endpoint protection, vulnerability management, and compliance with industry standards and audits. The ideal candidate will have a strong foundation in networking and identity management and be eager to grow into advanced areas such as Hardware Security Module (HSM) operations. What You'll Do SSL Certificate Management Oversee the lifecycle of SSL/TLS certificates across the organization. Ensure timely renewal, deployment, and revocation of certificates. Maintain inventory and automate certificate management where possible. HSM Management (Learning & Implementation) Assist in the deployment and configuration of HSMs. Learn and apply best practices for key management and cryptographic operations. Endpoint Security Administer and optimize endpoint protection using tools like CrowdStrike. Monitor threats and ensure endpoint compliance. Vulnerability Management Conduct regular scans and assessments using tools like Rapid7. Collaborate with IT and development teams to remediate vulnerabilities. Track and report on vulnerability trends and risk posture. Data Loss Prevention (DLP) & Web Security Implement and manage DLP policies to protect sensitive data. Configure and maintain web security controls using Cloudflare or similar platforms. Networking & Infrastructure Security Apply solid networking knowledge to secure and troubleshoot infrastructure. Support firewall, VPN, and segmentation strategies. Identity Lifecycle & Access Management Manage identity provisioning and de-provisioning using tools like SailPoint. Ensure role-based access control and least privilege principles are enforced. Audit & Compliance Prepare and support regular audits including ISO 27001, CPS 320, and Australian Payments Network requirements. Maintain documentation and evidence for compliance. Collaborate with internal and external auditors to address findings. What You'll Bring 3 years in a cybersecurity or infrastructure security role. Hands-on experience with SSL certificate management and endpoint protection tools. Familiarity with vulnerability management platforms (e.g., Rapid7). Working knowledge of DLP and web security technologies. Strong understanding of networking protocols and security principles. Experience with identity and access management platforms (e.g., SailPoint). Exposure to compliance frameworks and audit processes. Excellent analytical, documentation, and communication skills. Desirable Qualifications Certifications such as CompTIA Security, (ISC)² SSCP, Microsoft SC-200, or equivalent. Experience with HSMs or cryptographic key management. Knowledge of scripting or automation (e.g., PowerShell, Python). Familiarity with cloud security (AWS, Azure). What’s in it for you? Tyro is committed to a diverse, inclusive workplace where everyone thrives. We welcome applicants of all backgrounds and are an equal opportunity employer. If you need accommodations or adjustments at any stage of the recruitment process, simply inform our Talent team during your conversation with them. You’ll Also Receive A mix of in-office and remote working Learning and career development opportunities 16 weeks paid primary carers leave 12 weeks paid secondary carers leave Annual team-based volunteer day Birthday Leave Power Up Day (Additional day of leave) Weekly team social events, snacks, craft beer and wine, ping pong and video games Taco Tuesdays Mental health and wellness initiatives Novated leasing Tyro is committed to a diverse, inclusive workplace where everyone thrives. We welcome applicants of all backgrounds and are an equal opportunity employer. If you need accommodations or adjustments at any stage of the recruitment process, simply inform our Talent team during your conversation with them. Still with us? If you’ve got this far, you might be a great fit for us. Don’t tick all the boxes above? That’s ok, apply anyway and our Talent team will review your profile - you might be a fit for future roles. Seniority level Mid-Senior level Employment type Full-time Job function Information Technology J-18808-Ljbffr
