Senior Security Architect - Australian Financial Complaints Authority

Key Responsibilities

• Architect and evolve end‑to‑end security solutions for cloud and on‑prem infrastructures, ensuring alignment with regulatory requirements and industry best practices.
• Conduct comprehensive threat modeling, risk assessments, and security design reviews for new and existing systems.
• Define and enforce security policies, standards, and controls, including IAM, encryption, and network segmentation.
• Lead incident response planning, tabletop exercises, and post‑incident analysis to continuously improve security posture.
• Collaborate with cross‑functional teams (DevOps, product, compliance) to embed security into the SDLC and promote a security‑first culture.

Requirements

• 10+ years of experience in security architecture, with a proven track record in large‑scale, regulated environments.
• Deep expertise in cloud security (AWS, Azure, GCP) and on‑prem security controls.
• Strong knowledge of compliance frameworks (ISO 27001, PCI‑DSS, Australian privacy laws).
• Excellent communication skills, able to translate complex security concepts to technical and non‑technical stakeholders.
• Relevant certifications such as CISSP, CISM, or equivalent are highly desirable.