Cyber Security Engineer

Australian Payments Plus (AP+) is here to shape the future of payments for Australia. We aim to deliver more innovation to Australia's payments ecosystem, for the collective benefit of Australian businesses, government and consumers.​

Our solutions include Australia's domestic debit network, real-time, data rich payments infrastructure, secure bill payments, digital identity verification, QR payments and experiences and open wallet solutions. It's a new chapter with more possibilities.​

Life @ AP+:

We are one connected team in pursuit of one inspiring purpose - to unite people and technology to power better experiences. Each of us has a part to play in making that happen. You'll be encouraged to bring your big ideas forward and make a difference through your work. Taking steps forward in your career whilst still having room for fun, friendships, and flexibility in your daily life.

We're driven by our core values: lead with heart, learn for tomorrow and live our legacy. A purpose like ours takes the inspired impact of an incredible team. Ready to change the game? We're ready to help you do it.

The Role:

As a Cyber Security Engineer within Cyber Security team, you will work closely with other technology teams to identify and mitigate cyber threats and implement robust security solutions that protect our organisation from cyber-attacks.  You will work collaboratively with the Security Operations team to continuously improve our security tools and platforms. In addition, you will be a point of contact between the Cyber Security and Infrastructure & Operations teams to ensure the security and integrity of our computer systems and networks.

This role requires a proactive and analytical mindset, a deep understanding of cyber security principles, experience with a range of different security solutions and the ability to stay updated with the latest security trends and technologies.

Proposed Role Responsibilities are:

• Act as a contact point between the Cyber Security team and Infrastructure and Operations teams.
• Action security assessments to remediate threats and vulnerabilities in our computer systems networks, and Cloud environments.
• Implement and maintain security log Ingestion pipelines, threat detection use cases, and security automation workflows.
• Design and implement security policies, controls and procedures to ensure compliance with industry standards and regulations
• Assess and configure security technologies such as endpoint protection, SASE, Cloud platforms, SIEM and external attack surface management.
• Support investigation of, and response to, security incidents.

• Collaborate with cross-functional teams to design and implement security solutions that meet the needs of our organisation.

• Configure, maintain vulnerability management systems.

• Collaborate with Operations teams to remediate vulnerabilities and drive continuous improvement of vulnerability Identification and remediation practices.
• Design and apply technical controls which enforce security policies, standards, and procedures.
• Ensure compliance with relevant legal, regulatory, and industry standards (e.g., PCI-DSS, ISO
• Conduct risk assessments and develop strategies to mitigate identified risks.
• Work with stakeholders to implement security controls aligned with business objectives.

Proposed Position Requirements are

• Tertiary qualifications in Computer Science, Cyber Security or relevant discipline would be highly regarded
• Security industry certifications are also desirable
• Proven experience as a Cyber Security Engineer or similar role

• Proficiency In managing and maintaining a wide range of security tools, including but not limited to:

• Endpoint Protection (e.g. CrowdStrike, Defender, Carbon Black)

• Cloud-Native Application Protection Platform (e.g. Prisma Cloud, Orca Security, Wiz)
• Vulnerability Management (e.g. Qualys, Rapid7, CrowdStrike)
• Secure Access Service Edge (e.g. Netskope, Zscaler, Prisma SASE)
• Security Information and Event Management (e.g. Splunk, Sentinel, CrowdStrike NG-SIEM/Logscale)
• External Attack Surface Management (e.g. CrowdStrike Falcon Surface, Randori, Microsoft Defender EASM, WatchTowr)

• Security Orchestration and Automation Response(e.g. Splunk SOAR, Sentinel SOAR, CrowdStrike Fusion)

• Hands-on experience with Cloud platforms (AWS, Azure, GCP) and Cloud-native security tooling.

• Excellent problem-solving skills and the ability to work autonomously and under pressure.

• Strong communication skills with the ability to explain technical concepts to non-technical stakeholders.
• Participate in internal and external audits, such as PCI DSS and ISO 27001, by providing technical evidence and assisting with remediation of findings

What happens next:

At AP+, we believe in the power of passion, pride, and purpose.­ Our team is driven by a shared mission to make a difference in the world of payments, and we're proud to work together towards this common goal.

If you're ready to be a game changer, please submit your application & the Talent Acquisition team will endeavour to review and notify you of the outcome within the next two weeks.

We want to remove all barriers to inclusion so if you need advice or support with your application, we're here to help. Please reach out to We also encourage you to let us know your pronouns at any point during the recruitment process.

AP+ are not partnering with Recruitment agencies for this role.