Lead SOC architecture and strategy for a major QLD Government cyber security program Drive SIEM, SOAR, and multi-tenant SOC capability uplift and transformation QLD State Gov, hourly rate contract, Brisbane CBD Job Title: SOC Service Architect (Cyber Security Unit) Location: Brisbane, flexible working arrangements Contract: Hourly rate contract, initial term through Dec 2026, with four 6-month extension options Job Summary This is an opportunity to join a major Queensland Government agency driving innovation in cyber security, digital services, and data-led transformation. In this role, your work will directly contribute to strengthening cyber resilience and delivering secure, accessible, and customer-focused services to Queenslanders. You’ll operate at the intersection of security architecture, strategy, and operational delivery , helping shape a modern, scalable, whole-of-government Security Operations Centre (SOC) capability. As a SOC Service Architect , you will play a critical leadership role in designing, uplifting, and transitioning a multi-tenant SOC capability into a fully operational, enterprise-grade service. You’ll work closely with cyber security leaders, platform teams, and external partners to ensure the SOC operates at the highest level of maturity, performance, and resilience. Your role Within the Cyber Security Unit, you will contribute to building whole-of-government cyber security capability and resilience. As a key member of the Strategic Program team, you will lead the capability uplift and transition of a SOC Overwatch Pilot, ensuring a seamless handover into operational Security Operations Centre (SOC) and Incident Response functions. This includes knowledge transfer, stakeholder training, and development of onboarding artefacts. Main responsibilities Guide the Whole-of-Government SOC strategy and service model, contributing to service architecture and delivery design Identify and support uplift initiatives across SOC capabilities including monitoring, detection engineering, incident response, threat intelligence, automation, and platform operations Co-design the SOC operating model, including service catalogues, service definitions, SLAs, and KPIs aligned to government and industry standards Work with internal teams, stakeholders, and service integrators to identify, manage, and mitigate risks in multi-tenant SOC operations Develop and implement security policies, SOPs, and playbooks aligned with frameworks such as NIST, ISO 27001, Essential Eight, and relevant legislation Define SOC performance metrics, reporting frameworks, and capability maturity uplift plans Provide architectural guidance on SOC tooling and platforms, ensuring scalability and operational efficiency Support evaluation, integration, and optimisation of technologies including: SIEM platforms (e.g. Microsoft Sentinel) SOAR solutions Endpoint Detection & Response (EDR) Vulnerability management tools Contribute to quality assurance of platform development and integration of security technologies Drive continuous improvement and innovation, including exploring AI and machine learning in SOC operations Requirements: Proven experience designing and establishing Security Operations Centres, ideally within complex or multi-tenant environments Strong expertise in SIEM, SOAR, and UEBA technologies Solid understanding of cyber security frameworks such as NIST and ISO 27001 Experience with modern security architecture including Zero Trust Network Access (ZTNA) and Security Service Edge (SSE) Strong network architecture knowledge across both design and operational domains Experience contributing to RFPs, tenders, and vendor engagement Knowledge of government or regulated environment security and compliance requirements Experience contributing to cyber security strategy and uplift roadmaps Desirable requirements Relevant cyber security certifications highly regarded: CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) GSOC (GIAC Security Operations Certified) Strong familiarity with Microsoft Azure and the Microsoft security stack (particularly Sentinel), with exposure to other SIEM platforms Ability and willingness to obtain and maintain NV1 Security Clearance Why apply with Hudson Recruitment? Looking for your next role? At Hudson, we genuinely care about people and value long-term relationships over transactional hiring. Our focus on service, reputation, and quality ensures we find the best opportunities in the architecture space for both you and our clients. To submit your application, please click Apply, or send your resume to vera.geng@hudson.com Diversity, Equity & Inclusion at Hudson Hudson is committed to helping you find a workplace where you feel respected, supported, and free to thrive. We welcome applications from all backgrounds, identities, and lived experiences—because when different voices come together, amazing things happen. Casual Loading Please note for all Australian based contract and temporary roles only, the pay rate is inclusive of mandatory 25% casual loading. This excludes permanent and fixed term roles. Consultant Vera.Geng@hudson.com Reference number: 249449 Profession:IT, Technology & DigitalArchitects Company: Hudson Date posted: 19th Apr, 2026
