Job Type: Temporary Category: Information Technology Location: Multiple locations Date Advertised: 12-JUN-25 Job Reference: ASIC/1864386 Job Title: Cyber Security Architect (Application Security) Business Unit: Division: Summary: At ASIC, you can be the change that ensures a fair, strong and efficient financial system for the benefit of all Australians. Contribute to delivering on ASIC's purpose, vision, and strategic priorities to help maintain the integrity of the financial system and protect consumers from harm.   ASIC's Cyber Security team is seeking a talented Cyber Security Architect (Application Security) to join their collaborative and high performing team.   Sydney or Melbourne Locations 24 Month Fixed Term Position Salary from $131,752 to $144,386 (depending on experience) + 15.4 % superannuation Applications close at 11:59pm AEST, Sunday 22 June 2025    The team  The Cyber Security team provides a wide range of services including security architecture & design, incident response and cyber assurance for ASIC.  We make use of the latest security technology with an increasing focus on automation and analytics to secure and support ASIC on its journey to be a 'best in class regulator supporting the Australian financial markets.   As a Cyber Security Architect (Application Security), you will provide strategic leadership in the design, implementation, integration and governance of security solutions across cloud-based and hybrid environments. Your focus will be on enabling secure business operations while ensuring alignment with enterprise security standards. You will also collaborate with other architecture teams and contribute to broader cybersecurity programs and initiatives. More specifically, you will:  Act as a customer-facing specialist, leading detailed security architecture design and assessment sessions with solution architects, developers and business stakeholders. Evaluate the effectiveness of security controls in corporate applications to identify gaps, vulnerabilities and potential attack vectors. Collaborate with solution architects and application teams to strengthen security across existing platforms and services. Conduct and coordinate threat modelling and architecture reviews to validate the completeness of security controls. Facilitate the onboarding of technology services into the SOC threat monitoring program, including defining detection methods for solution-specific threats. Develop and maintain cybersecurity documentation, including solution designs, assessment reports and architectural artifacts. Support Cyber Security Team Leads in enhancing security tools, processes, culture and service delivery.   The ideal candidate for the Cyber Security Architect (Application Security) role is an emerging or mid-level cybersecurity or engineering professional with hands-on experience in securing applications across cloud and hybrid environments. They will bring with them a strong technical foundation and practical knowledge of application security, while also demonstrating a clear ambition to grow into a strategic architectural role. In addition, you will have: Tertiary qualifications and/or equivalent experience in a cybersecurity role, with demonstrated experience as a security architect. Proven experience in: Designing and implementing application security controls aligned with industry standards and best practices. Conducting security assessments to identify vulnerabilities and developing remediation plans. Collaborating with application teams to ensure timely resolution of security issues. Providing architectural leadership in Security Operations Centre (SOC) tooling and threat hunting, particularly with Microsoft Sentinel. Applying security frameworks and standards such as NIST, ISO 27001, ACSC ISM and the ASD Essential Eight to design secure solutions. Strong understanding of enterprise-scale cloud and hybrid infrastructure security. Excellent interpersonal, consultative, and communication skills, with the ability to convey complex information clearly to technical and project stakeholders. Security certifications are desirable but not essential (e.g., CISSP, CISSP-ISSAP, SABSA, CCSP or equivalent cloud security certifications).   Click ‘apply' to start your application. Applications close at 11:59pm AEST, Sunday 22 June 2025.   ASIC's remit is one of the broadest of regulators across the world. ASIC regulates corporations, markets, financial services and consumer credit and monitors and promotes market integrity and consumer protection in the Australian financial system. Through our enforcement work, we hold to account those who contravene the law, working to achieve strong outcomes that address the greatest consumer and investor harms. ASIC is committed to a providing a diverse and inclusive workplace where the very best talent in Australia chooses to work. Indigenous Australians are encouraged to apply as well as applicants from all backgrounds and with different abilities. We offer a range of employee benefits including: Attractive superannuation Additional leave entitlements 50/50 hybrid work-from home model Flexible work arrangements Assistance for study and professional development Click here to view ASIC's salary and benefits guide. To read more about ASIC, you can visit our website or review our Corporate Plan. To work with us, you need to be an Australian citizen and be prepared to complete an ASIC Suitability and Baseline Assessment.