Principal Cyber Sec Architect
Principal Cyber Sec Architect
Job no: 535544
Work type: Full Time
Location: Sydney, NSW
Categories: Information Technology, Analyst, Cyber
- Employment Type: Principal Cyber Security Architect, full time continuing role.
- Excellent salary package available
- Location: UNSW Kensington Campus (Hybrid Working Opportunities)
About UNSW: UNSW isn’t like other places you’ve worked. Yes, we’re a large organisation with a diverse and talented community, a community doing extraordinary things. Together, we are driven to be thoughtful, practical, and purposeful in all we do. Taking this combined approach is what makes our work matter. If you want a career where you can thrive, be challenged and do meaningful work, you’re in the right place.
The Principal Cyber Security Architect will be responsible for developing, communicating, and maintaining Cyber Security transformation strategies, security architectures, and security roadmaps. This role will work across all program initiatives within the Cyber Security program and will partner with the UNSW Enterprise Architecture function and participate in the Architectural Working Group (AWG). It will be important for the incumbent to align standards, frameworks and security with the overall UNSW business and technology strategy by designing architectures that define strong architectures to mitigate risk, identify the future state, and protect the wider digital and information assets of the University. As a very senior contributor, this role requires broad strategic thinking and engagement with the wider University stakeholders. This role will be a collaborative position within the Cyber Security team and will peer with the UNSW Enterprise Architecture group. And this ability to work on cross-functional teams and across different parts of UNSW will be a key differentiator and success of the role judged by cross-functional achievements. The objective of this position is to ensure UNSW can achieve its strategic objectives, while Securing enterprise information by determining security requirements; planning, implementing, and testing security systems; preparing security standards, policies, and procedures; mentoring team members. The role reports to the Head of Cyber Strategy & Governance and has no direct reports.
Specific accountabilities for this role include:
- Drive the development, communication and implementation of Operational Technology / IT Cyber Security architecture, roadmaps, and standards, in alignment with UNSW Cyber Security Strategy & Enterprise Architecture.
- Provide expertise, leadership, guidance and support to solution architects, designers and project teams in the development, communication and full lifecycle management of enterprise aligned cyber security architectures.
- Identify security design/architecture gaps / flaws in existing and proposed architectures and recommend changes or enhancements.
- Engage with key stakeholders across the university to communicate the benefits of the enterprise cyber security architecture, plans and supporting the delivery of the organisational cyber security strategy.
- Work as part of a multi-discipline team supporting the development of long term technology strategies and roadmaps including definition of roadmap projects, costing and benefits.
- Provide expert, specialist advice to support transformation programs, providing strategy and services to support the resolution of conflicting demands and/or designs and initiatives that continue to mature this capability.
- Proactively identify and escalate potential risks and ensure security is appropriately addressed. Manage the development of risk management plans, establishment of risk controls and performance of risk mitigation activities.
- Leveraging and updating existing control reference patterns and developing new patterns to outline integration approaches, use-cases, re-use, and technical reference for Enterprise security capabilities.
- Development of high-level and detailed security requirements relating to project initiatives and security service catalogue.
- Understand and track emerging threats and technologies and their relevance to security architecture.
- Provide high level security architecture requirement to define RFI/RFP and liaise with the vendors.
- Ability to review new and existing Information Technology projects for information security compliance by developing, documenting, and communicating adherence to architecture, blueprints, components, standards and strategies.
- Guiding others in the practical application of security and risk management concepts, principles and strategies, and relevant industry standards.
Skills and Experience:
- Tertiary qualification in a relevant field as well as minimum 10 years’ experience in Cyber Security with at least five years in security architecture role.
- Relevant industry certification(s), e.g. CISM, CISSP, SABSA, TOGAF, GIAC and/or relevant industry experience are highly desired.
- Knowledge of relevant industry frameworks relating to Operational Technology and Cyber Security (i.e. NIST, CIP, ISO/IEC 64223).
- Extensive experience and knowledge in cloud security including security compliance in Azure and AWS.
- Significant experience in developing, communicating, and maintaining cyber security architectures, roadmaps, policies and standards.
- Experience in shaping and driving the security design and deployment of major IT transformation programs from a cyber security perspective, including (but not limited to): network security architecture, desktop and server security architecture, cloud security and resilience architecture, threat and vulnerability management, centralised logging and threat correlation, IT Security architecture and segregation models.
- Experience with IAM, including strategies, trust models, and open standards (e.g. SAML, OAuth, OpenID Connect & SCIM) used to improve manageability, access governance, provisioning, information security, and privacy.
- Demonstrated ability to lead and influence other senior technical and business staff, without these people being direct reports.
- Solid understanding of application security vulnerabilities (OWASP top 10) and countermeasures to reduce related risks.
- High level written, verbal communication and interpersonal skills; along with the ability to negotiate, consult and persuade in a business and technical environment.
- Proven technical and interpersonal skills are required to develop sound communications options. An understanding of and commitment to UNSW’s aims, objectives and values in action, together with relevant policies and guidelines.
- Knowledge of health and safety responsibilities and commitment to attending relevant health and safety training.
To Apply: If this is of interest to you, please submit your CV, Cover Letter and responses to the Skills and Experience outlined above and in the position description.
More Information: visit https://www.jobs.unsw.edu.au/
Contact: Jen MacLachlan, email: j.maclachlan@unsw.edu.au
Applications close: 28th of October at 11.30pm
Benefits and Culture: Flexible hybrid working, An additional 3 days of leave over the Christmas Period, Access to lifelong learning and career development, Progressive HR practices, Discounts and entitlements.
UNSW is committed to equity diversity and inclusion. Applications from women, people of culturally and linguistically diverse backgrounds, those living with disabilities, members of the LGBTIQ+ community; and people of Aboriginal and Torres Strait Islander descent, are encouraged. UNSW provides workplace adjustments for people with disability, and access to flexible work options for eligible staff.
The University reserves the right not to proceed with any appointment.
Tell them AcademicJobs.com sent you!
