Security Engineer

Position Title: Security Engineer

Location: Sydney or Newcastle

Contract Type: 12-Month Daily Rate Contract

Work Rights: Must have full Australian working rights

Position Overview

The Security Engineer position exists to ensure a safe and secure computing environment for both employees and members. This role is responsible for identifying vulnerabilities, responding to security incidents, designing and implementing Information Security Architecture, and configuring systems to enhance security features. The Security Engineer will work in a fast-paced business environment, addressing security threats, resolving technical faults, and implementing real solutions efficiently.

Key Responsibilities

Maintain security software and hardware, including firewalls, intrusion detection systems, identity & access management, and vulnerability management. Identify emerging security trends, vulnerabilities, and threats to proactively mitigate risks. Interpret threat intelligence advisories and recommend appropriate security measures. Source, evaluate, and implement new security solutions to enhance organisational protection. Conduct proactive research to analyse security weaknesses and recommend improvements. Work closely with vendors to integrate security technologies. Contribute to the development and refinement of security policies and procedures. Monitor security solutions, execute vulnerability scans, and address data security concerns.

Required Skills & Experience

Qualifications (Mandatory):

Tertiary qualification in Information Technology or related field CISSP or CISM certification

Experience & Skills:

Minimum 5 years' experience in a technical security role. Proven expertise with firewalls, intrusion detection systems, identity & access management, and vulnerability management. Strong understanding of Linux and Windows operating systems. Experience with configuration management tools. Familiarity with scripting languages (e.g., Python, PowerShell). Knowledge of security within cloud platforms. Understanding of modern IT architectures (e.g., hybrid cloud, IaaS, PaaS). Experience with Rapid7 and CrowdStrike (nice to have). Ability to multi-task, prioritise, and manage time effectively. Strong problem-solving skills and ability to work in high-pressure environments. Excellent communication skills with the ability to explain security concepts to non-technical stakeholders.