Join an innovative and dynamic team within our Identity and Cyber Security (ICS) division and help us ensure our corporate assets and information are adequately protected. The team ensures adequate protection of information from inappropriate disclosure, tampering and deletion.
Join our Secure by Design team (SBD) as a Security Architect and work with our internal and/or external teams throughout the project life cycle to provide security advice, define security architectures/designs for their initiatives and projects and perform security assessment of project design and implementation.
As part of its innovation charter, the team needs to stay abreast with the global security landscape and find innovative solutions to secure business initiatives through ongoing relationships with vendors and partners.
Your responsibilities will include: Serving as a resource to Macquarie’s various business lines by partnering with technical delivery teams to work with technologies (including but not limited to cloud infrastructure (AWS, GCP, Azure), container orchestration & automation tools) and help drive the secure evolution of the organization. Work with various stakeholders to provide security advice and assist them in understanding the severity of the security risks and the remediation activities that could follow. Review Macquarie’s security capabilities and provide recommendations and work with stakeholders to uplift our security capability landscape. Take part in security architecture patterns development
About you: 7+ years’ experience in Cyber Security technical design and architecture roles Familiarity and experience in formal security architecture aspects, including logical and physical security architecture/design Strong understanding of third-party risk, security best practices, and secure application development will help to deliver end-to-end project lifecycle support on Agile or Waterfall projects Current or previous experience in software development, engineering, configuring, operating or designing security solutions for business and technology initiatives Experience working with public cloud, containers, Kubernetes and related technologies is desirable Experience with security engineering, infrastructure-as-code, CI/CD, vulnerability management, and application development is desirable · Strong written and oral communication skills, with ability to communicate effectively Familiarity and exposure to regulatory requirements, the evolving threat landscape, and industry standard frameworks including but not limited to: NIST, COBIT, and ISO are beneficial Industry recognized qualifications such as SABSA, CISSP, CISM, CISA, Security+, SANS certification, CEH, OSCP and cloud platform certifications are highly desirable, but not required.
If this sounds like fun, and you have skills or experience you think you can apply to the role, then we’d love to hear from you!