Principal Technical Security Verification Engineer (Cyber)

Principal Technical Security Assurance Engineer (Cyber) 

• You are an experienced Security Engineer with an investigative mindset
• We are one of the best and most advanced Cyber Security teams in Australia. 
• Together we can contribute to protecting the Group, customers, and the community. 

Your Business: 

Cyber Security protects the bank and our customers from theft, loss, and risk events, through effective and proactive management of cyber security, privacy, and operational risk. 

Your new team: 

This new team will be responsible for establishing the Technical Security Verification function within the Cyber Security team. 

This team will ensure visibility that new to bank technology and material changes to the Group's technology landscape have met Cyber Security requirements as aligned to our DevSecOps strategy. 

Do Work that matters: 

This role will provide technical leadership and automation strategies to ensure Group products are meeting essential Security controls and capability requirements

You will also: 

• Manage the strategic technical direction of the Technical Security assurance/verification capability
• Lead a number of SME's to gather and analyse data for from enterprise security and IT tools  
• Identifying and mapping core dependencies to implement target state Technical Security assurance across group stakeholders including DevSecOps and SDLC initiatives
• Develop Technical security assurance/verification automation and tooling including reporting for ongoing governance and oversight

We are interested in people who are: 

• Cyber Security professionals with proven experience in large scale enterprise technology and the security requirements
• Hands on technical auditing experience with a cyber security background. 
• Able to demonstrate knowledge of Threat modelling and Attack techniques to prioritise the right levels of product security 
• Demonstrated experience in implementing organisational processes to achieve security outcomes including DevSecOps 
• Experienced in providing analysis and recommendations regarding security gaps including recommendations to senior management 
• Have an ‘attack’ mindset to ensure prioritisation of the most critical work to protect our key assets from potential malicious activity 
• Have a proven record of automation and orchestration to gain technical insights with minimal manual effort

If you're already part of the Commonwealth Bank Group (including Bankwest, x15ventures), you'll need to apply through Sidekick to submit a valid application. We’re keen to support you with the next step in your career.

We're aware of some accessibility issues on this site, particularly for screen reader users. We want to make finding your dream job as easy as possible, so if you require additional support please contact HR Direct on 1800 989 696.