Join one of Australia’s leading academic institutions as we advance our digital transformation agenda and strengthen our cybersecurity posture. We are seeking a highly experienced Senior Security Engineer to lead and enhance our security architecture and infrastructure, ensuring robust protection of our systems and data.
About the Role:
As the Senior Security Engineer, you will play a critical role in the design, development, and optimisation of our cyber security systems, with a focus on Palo Alto technologies. Working within a collaborative IT Security team, you will lead architectural initiatives and provide expert guidance to support the ongoing commitment to cyber resilience and operational excellence.
Responsibilities:
- Lead the architecture, implementation, and maintenance of Palo Alto firewalls, including rule sets, routing, VPNs (GlobalProtect), and integration with ExpressRoute.
- Provide strategic and technical guidance on Palo Alto technologies, ensuring alignment with best practices and organisational requirements.
- Coordinate advanced troubleshooting and root cause analysis for issues related to firewall infrastructure and security platforms.
- Collaborate with internal stakeholders and vendors to manage, optimise, and monitor SIEM, EDR, and endpoint protection tools to reduce false positives and enhance detection capabilities.
- Support vulnerability assessment activities, prioritising remediation efforts in partnership with technical and business units.
- Contribute to the continuous improvement of security architecture, aligning with secure development life cycles (SDLC), infrastructure-as-code (IaC), and modern DevSecOps practices.
Skills and Experience:
- Proven experience in firewall administration with a deep understanding of Palo Alto technologies, including VPNs, rule configuration, routing, and network segmentation.
- Hands-on experience with security monitoring tools such as SIEM, EDR, endpoint protection, and vulnerability management platforms.
- Exposure to Microsoft security technologies including Entra ID, Microsoft Defender, and Azure Security Center.
- Familiarity with threat intelligence frameworks such as MITRE ATT&CK, MISP, and security standards including ISO 27001, NIST, SOC 2, and the Essential Eight.
- Understanding of secure SDLC practices, secrets management, and CI/CD pipelines using tools such as GitHub Actions, Azure DevOps, or GitLab CI.
- Relevant industry certifications are highly desirable, such as:
- GCIH, GPEN, GCFA, AZ-500, SC-200, CISSP, CISM, or Security+.
