Senior Solution Architect in Cyber Security

Cyber Security Solution Architect - NV1 Clearance Required

Location:
Flexible - Work from anywhere in Australia

Security Clearance:
Must hold current
NV1

Contract Duration:
Until
30 June 2026
with
1 x 12-month extension option

Employment Type:
Contract | 36.75 hours per week

We're seeking a highly skilled
Cyber Security Solution Architect
to lead the design and delivery of secure, scalable solutions across multiple cyber security and infrastructure modernisation initiatives. This role offers the flexibility to hybrid from major capital cities or territory's in Australia and requires active NV1 clearance.

Key Responsibilities

Solution Design & Architecture

• Design integrated solutions across cyber security and infrastructure projects.
• Ensure alignment with enterprise architecture standards, cyber frameworks, and IT strategy.
• Produce high-quality documentation including solution overviews, interface diagrams, and security considerations.
• Evaluate technology options for integration, reuse, or innovation.

Project Engagement

• Provide architectural oversight across multiple concurrent projects.
• Collaborate with BAs, PMs, Developers, Testers, and other stakeholders.
• Support project scoping with effort estimation, dependency identification, and risk analysis.

Mandatory Skills & Experience

Security Architecture & Frameworks

• TOGAF, NIST CSF, reference architectures, control mapping.

Threat Modelling & Risk-Based Controls

• Trust boundaries, compensating controls, residual risk documentation.

Compliance & Assurance

• ACSC Essential Eight, ISM, ISO 27001, NIST 800-53/171, IRAP awareness.

System Security

• Zero Trust, micro-segmentation (Illumio/Prisma), WAF/API gateways, CDN/DoS patterns.

Cloud Security Architecture

• Azure-first with multi-cloud awareness (AWS/GCP), landing zones, Defender, Key Vault, IAM, KMS.

Platform Security

• Kubernetes/OpenShift, RBAC, namespaces, image signing, CIS hardening.

Application & DevSecOps

• SAST/DAST/IAST, API security (mTLS, schema validation), IaC security (Terraform/GitHub).

PKI & TLS

• CA hierarchy, cert lifecycle management, TLS/mTLS for services and edge.

Data Security

• Purview classification, DLP (M365/Endpoint/Cloud), encryption patterns.

Identity Security

• Entra ID, OAuth2/OIDC/SAML, Conditional Access, PAM, secrets hygiene.

Incident Response

• SIEM/SOAR (Sentinel/Splunk), KQL/SPL, playbooks, telemetry, containment runbooks.

Why Join Us?

• Work on high-impact national cyber initiatives.
• Flexible work arrangements - remote from anywhere in Australia.
• Long-term contract with potential extension.
• Collaborative, forward-thinking team environment.

Ready to make a difference in Australia's cyber resilience?
Apply now with your CV and NV1 clearance details.

Desired Skills and Experience
Top 10 Skills Required

Security Architecture & Frameworks

Deep understanding of TOGAF, NIST CSF, and reference architectures for secure system design.

Cloud Security Architecture

Expertise in Azure-first environments with multi-cloud awareness (AWS/GCP), including landing zones, policy enforcement, and cloud-native security tools.

Threat Modelling & Risk-Based Controls

Ability to define trust boundaries, apply compensating controls, and document residual risks effectively.

Compliance & Assurance

Strong knowledge of ACSC Essential Eight, ISM, ISO 27001, NIST 800-53/171, and IRAP processes.

Zero Trust & Network Security

Experience with micro-segmentation (e.g., Illumio/Prisma), WAFs, API gateways, and secure network design patterns.

DevSecOps & Application Security

Familiarity with SAST/DAST/IAST, API security (mTLS, schema validation), and secure CI/CD pipelines using tools like Terraform and GitHub.

Platform Security (Kubernetes/OpenShift)

Knowledge of RBAC, admission controls, namespace isolation, image signing, and workload hardening.

Identity & Secrets Management

Proficiency in Entra ID/AAD, OAuth2/OIDC/SAML, Conditional Access, PAM, and secure secrets handling.

Incident Detection & Response Engineering

Experience with SIEM/SOAR platforms (Microsoft Sentinel/Splunk), KQL/SPL, and containment playbooks.

Data Protection & Governance

Skills in data classification, DLP (M365/Endpoint/Cloud), encryption strategies, and governance tools like Microsoft Purview

**Eamon Ridgway

Consultant**

ManpowerGroup is committed to being a Diversity Confident Recruiter and encourages applications from people from a diverse range of backgrounds, including people with a disability. Please indicate your preferred method of communication in your resume and please let us know if you require any reasonable adjustments should you be contacted for an interview.

Aboriginal and Torres Strait Islander people are encouraged to apply.

By submitting your resume and other personal information with this application you are consenting to this information being collected in line with our privacy policy. Follow the link to learn more -

Experis Pty Ltd is a wholly owned subsidiary of ManpowerGroup

State: QLD, licensee/s Manpower Services (Australia) Pty Ltd, LHL-02026-D5L4Q. State: QLD, licensee/s
Experis
Pty Ltd, LHL-02014-Y5F6D. State: SA, licensee/s Manpower Services (Australia) Pty Ltd, LHS 288856