Cloud Security Architect
Security Consultant 12.11.24About ctrl:cyber
Your trusted all Australian cybersecurity partner, providing forward thinking consultancy across offensive security and cyber advisory to industry leaders and global brands.
ctrl:cyber remain pioneers in the industry, boasting a cutting edge Risk Operations Centre developed, refined and operated all within Australia since 2017.
At Ctrl, cyber together goes beyond a mission—it’s our way of leading the charge. It’s about partnering with our clients, the broader industry, and like-minded innovators to carry real change. It’s about building up our community and driving progress as a collective force. Advancing the industry requires everyone moving forward, together.
Let’s talk about the role:
We’re looking for an experienced Cloud Security Architect to join, who is based in either Perth, Brisbane and Adelaide. The role will be a mixture of hybrid/WFH and onsite with a key client. We’re looking for industry-experienced professionals with at least 5 years’ experience within the responsibilities below.
Let’s talk about your responsibilities:
Key responsibilities will include:
- Development and execution of the enterprise-wide application and data security program and associated performance metrics.
- Review design documents, identify, and communicate potential cybersecurity gaps to project teams for remediation.
- Apply cybersecurity and privacy principles to organisational requirements (relevant to confidentiality, integrity, availability, authentication, and non-repudiation).
- Lead risk identification efforts and communication of the risks and mitigating controls to stakeholders to manage cybersecurity risks within the organisation.
- Research industry best practices and vendor cybersecurity capabilities to mitigate emerging threats.
- Provide application security services including application security scans, code reviews to ensure security code development, DevSecOps support, and cloud asset vulnerability management.
- Development and maintenance of the Cloud Security Posture Management capability for secure hosting of applications.
- Write position papers on cybersecurity topics such as cloud, application, and/or data security
- Act as an escalation point for the first level SOC and Cloud Security Governance teams
Let’s talk about your skills:
Five years of relevant experience in Secure-by-Design Application Development, DevSecOps, Application Security, Cloud Security.
- Certified as a Cybersecurity Professional (CISSP, CISM preferred or equivalent).
- Cloud Cybersecurity certifications (Azure preferred or AWS equivalent).
- Understanding of industry regulatory and compliance requirements like ISM, NIST, and ISO27001.
- Expert level in configuring and utilising computer protection components (e.g., hardware firewalls, servers, routers, as appropriate) in general but also in particular for applications, M365 and Azure/AWS cloud environments.
- Prior experience as a cloud engineer or architect building and implementing cloud technology in large scale environments favourable.