Location: Brisbane | Hybrid & Flexible Working
Compensation: $150,000 – $160,000 + Super
About the Engagement
We are supporting a large enterprise organisation undertaking a multi-year cyber security uplift program. This program spans Zero Trust, identity and privileged access, security operations automation, and cloud security posture enhancement across both corporate IT and operational technology (OT) environments.
This role sits at the centre of that transformation and offers the opportunity to deliver measurable security outcomes in a complex, multi-vendor environment.
Role Purpose
As a Cyber Security Engineer, you will design, implement, and operate security controls that improve detection, prevention, and response capabilities across enterprise platforms.
This is a hands-on engineering role with strong operational ownership, focused on reducing risk, improving resilience, and enabling scalable, repeatable security outcomes.
Key Responsibilities
- Threat Protection & Monitoring. Build and tune detections, dashboards, and automated playbooks; optimise alert fidelity and data pipelines.
- Identity & Zero Trust. Implement and operate Conditional Access, MFA, SSO, network segmentation, and Zero Trust access controls.
- Privileged Access Management. Engineer and operationalise PAM/PRA solutions, workflows, and guardrails.
- Cloud & Endpoint Security. Strengthen Azure and Microsoft 365 security baselines, policies, and governance; harden configurations.
- Automation & Infrastructure as Code. Develop scripted runbooks and IaC for consistent, auditable, and repeatable deployments.
- Vulnerability & OT Security. Integrate vulnerability management and OT visibility solutions; support remediation initiatives.
- Incident Collaboration. Partner with SOC and internal teams during high-impact incidents; contribute to root cause analysis and lessons learned.
- Documentation & Standards. Produce high-quality architecture diagrams, SOPs, runbooks, and control evidence aligned to best practice.
Skills & Experience
Essential
- Proven experience in enterprise security engineering and operations within complex environments
- Strong analytical and problem-solving skills with clear ownership of outcomes
- Excellent written documentation and operational discipline
Hands-on experience with technologies such as:
- Threat Protection & Monitoring. Microsoft Sentinel, Microsoft Defender (XDR suite), KQL, Logic Apps, MDVM
- Identity & Zero Trust. Microsoft Entra, Conditional Access, MFA, SSO, PAM/PRA platforms (e.g. CyberArk, Delinea, BeyondTrust), ZTNA
- Cloud & Endpoint Security. Defender for Cloud, Azure Policy, Intune, Configuration Manager
- Infrastructure & OT. Windows & Linux, Active Directory, M365, virtualisation (VMware / Nutanix), networking (Cisco / Fortinet), OT visibility tools (e.g. Nozomi), backup & recovery (e.g. Veeam)
- Automation & IaC. PowerShell, ARM, Bicep, Terraform, Azure Monitor Agent (AMA), Data Collection Rules
Success Measures
- Reduced mean time to detect and respond (MTTD / MTTR)
- Lower false-positive rates and improved detection quality
- Consistent policy enforcement across identity, endpoints, cloud, and OT
- High-quality runbooks and operational artefacts that enable repeatable outcomes
What’s Great About This Role
- Work on large-scale, high-impact security initiatives
- Exposure to modern Zero Trust and cloud-first security architectures
- Hybrid working with flexibility
- Collaborative environment with senior security practitioners
- Opportunity to deepen skills across identity, cloud, automation, and OT security
- Strong focus on continuous improvement and professional development
Engagement: 12-Month Fixed-Term Contract (high likelihood of extension, potential conversion to permanent). Ready to apply?
