Job Description

Job Title: Cyber Security Architects

Security Clearance: Must be able to obtain Negative Vetting Level 1

Duration: Initial 12 months with 2 x 12-month extensions

Industry: Information Technology

Functional Expertise: Cyber Security

Sub-functional Expertise: Security Architecture

Location of work: ACT

Closing date: 9AM Monday, 27 April 2026

Description:

Our client is seeking up to two Cyber Security Architects to provide specialist security advice and ensure alignment with Australian and international standards and best practices. The role focuses on secure system design, risk assessments, enterprise security frameworks, and compliance with legislative and policy requirements.

You will work closely with architecture, governance, risk and assurance teams, as well as broader ICT stakeholders, to embed security across all phases of system development and operations. This position also contributes to continuous improvement initiatives and strengthening overall security posture.

Responsibilities:

• Design and maintain secure architecture frameworks aligned with government standards (e.g. ISM, PSPF, NIST)
• Conduct threat modelling and risk assessments to identify vulnerabilities and recommend mitigation strategies
• Provide expert security guidance across IT projects, including cloud, infrastructure and application development
• Ensure compliance with relevant legislation, policies and data protection requirements
• Support incident response activities and contribute to post-incident analysis and remediation
• Monitor emerging threats and technologies to continuously improve security posture

Requirements:

• Degree in Cyber Security, ICT, or a related field
• Relevant industry certifications such as CISSP, CCSP, SABSA and/or TOGAF
• Strong knowledge of cloud security, identity management and/or secure software development
• Understanding of cyber threats within government environments
• Ability to work effectively in a high-security environment

Key Capabilities:

• Security architecture (Level 4)
• Information security (SCTY) – Level 4
• Information assurance (INAS) – Level 4
• Specialist advice (TECH) – Level 4
• Risk management (BURM) – Level 4
• Stakeholder relationship management (RLMT) – Level 4

Essential Criteria:

• Demonstrated experience in cyber security architecture, including secure system design and risk assessments.
• Strong understanding of government security frameworks and standards (e.g., ISM, PSPF, NIST).
• Familiarity with cloud security and identity and access management practices.
• Proven ability to communicate complex security concepts to both technical and non-technical audiences.
• Experience providing security oversight across IT projects, including infrastructure and application development.

Desirable Criteria:

• Knowledge of secure software development practices and DevSecOps principles.
• Understanding of data protection, privacy legislation, and compliance requirements.
• Experience with enterprise architecture frameworks and integration of security controls.
• Ability to influence and advise senior stakeholders on strategic security decisions.

How to apply:

Please submit your application including your resume and a completed application form addressing the essential and desirable criteria. Ensure your application highlights your experience and any relevant certifications.