Job Title: Security Architect Location: Sydney Experience Level: 8 years Role Overview: As a Security Architect, you will be responsible for overseeing end-to-end security architecture across enterprise and cloud environments. You will design and implement security frameworks, assess technical risks, and ensure compliance with Transport’s Cyber Security Policy, standards, and architectural governance. This role requires a deep understanding of enterprise security, identity management, encryption, and secure network design. Key Responsibilities: Develop and maintain end-to-end security architecture aligned with enterprise and cloud strategies. Define and implement security patterns, controls, and frameworks that meet Transport’s Cyber Security Policy and compliance standards. Collaborate with solution and enterprise architects to embed security by design in all technology solutions. Perform security risk assessments for applications, platforms, and third-party integrations. Provide subject matter expertise on cloud identity and access management, particularly with Azure AD. Design and review network segmentation, encryption, and key management strategies. Ensure alignment with architectural governance processes, security standards, and best practices (e.g., NIST, ISO 27001, CIS). Support incident response, threat modeling, and security testing initiatives as part of solution design reviews. Stay updated with emerging cyber threats and technologies to enhance enterprise security posture. Key Skills & Experience: Proven experience in security architecture within enterprise and cloud environments. Strong knowledge of enterprise security frameworks (e.g., SABSA, TOGAF Security, NIST CSF). Expertise in cloud identity and access management (Azure AD, MFA, Conditional Access). Hands-on understanding of encryption technologies, network segmentation, and secure protocol design. Experience with threat modeling, risk assessment, and security governance. Familiarity with DevSecOps and integration of security into CI/CD pipelines. Excellent communication skills with the ability to influence senior stakeholders. Relevant certifications such as CISSP, CISM, or Azure Security Engineer Associate are desirable. When you apply, you voluntarily consent to the disclosure, collection and use of your personal data for employment/recruitment and related purposes in accordance with the Tech Aalto Privacy Policy, a copy of which is published at Tech Aalto’s website (https://www.techaalto.com/privacy/) Confidentiality is assured, and only shortlisted candidates will be notified for interviews.
