About ctrl:cyber

Your trusted all Australian cybersecurity partner, providing forward thinking consultancy across offensive security and cyber advisory to industry leaders and global brands.

ctrl:cyber remain pioneers in the industry, boasting a cutting edge Risk Operations Centre developed, refined and operated all within Australia since 2017.

At Ctrl, cyber together goes beyond a mission—it’s our way of leading the charge. It’s about partnering with our clients, the broader industry, and like-minded innovators to carry real change. It’s about building up our community and driving progress as a collective force. Advancing the industry requires everyone moving forward, together.

Let’s talk about the role:

We’re looking for an experienced Cloud Security Architect to join, who is based in either Perth, Brisbane and Adelaide. The role will be a mixture of hybrid/WFH and onsite with a key client. We’re looking for industry-experienced professionals with at least 5 years’ experience within the responsibilities below.

Let’s talk about your responsibilities:

Key responsibilities will include:

  • Development and execution of the enterprise-wide application and data security program and associated performance metrics.
  • Review design documents, identify, and communicate potential cybersecurity gaps to project teams for remediation.
  • Apply cybersecurity and privacy principles to organisational requirements (relevant to confidentiality, integrity, availability, authentication, and non-repudiation).
  • Lead risk identification efforts and communication of the risks and mitigating controls to stakeholders to manage cybersecurity risks within the organisation.
  • Research industry best practices and vendor cybersecurity capabilities to mitigate emerging threats.
  • Provide application security services including application security scans, code reviews to ensure security code development, DevSecOps support, and cloud asset vulnerability management.
  • Development and maintenance of the Cloud Security Posture Management capability for secure hosting of applications.
  • Write position papers on cybersecurity topics such as cloud, application, and/or data security
  • Act as an escalation point for the first level SOC and Cloud Security Governance teams

Let’s talk about your skills:

Five years of relevant experience in Secure-by-Design Application Development, DevSecOps, Application Security, Cloud Security.

  • Certified as a Cybersecurity Professional (CISSP, CISM preferred or equivalent).
  • Cloud Cybersecurity certifications (Azure preferred or AWS equivalent).
  • Understanding of industry regulatory and compliance requirements like ISM, NIST, and ISO27001.
  • Expert level in configuring and utilising computer protection components (e.g., hardware firewalls, servers, routers, as appropriate) in general but also in particular for applications, M365 and Azure/AWS cloud environments.
  • Prior experience as a cloud engineer or architect building and implementing cloud technology in large scale environments favourable.