# Senior Cyber Security Engineer > Australian Payments Plus · Sydney, Australia (Hybrid) · Full-time · Posted 2026-05-05 **Workplace:** hybrid **Department:** Technology ## Description **The Game Changers:**                           Australian Payments Plus (AP+) is here to shape the future of payments for Australia. We aim to deliver more innovation to Australia’s payments ecosystem, for the collective benefit of Australian businesses, government and consumers.​  Our solutions include Australia’s domestic debit network, real-time, data rich payments infrastructure, secure bill payments, digital identity verification, QR payments and experiences and open wallet solutions. It’s a new chapter with more possibilities.​  **The Purpose**  This is a senior, hands-on engineering role.  You’ll own the design, build and operation of enterprise security platforms that protect AP+’s payments ecosystem across cloud and on-prem environments. You’ll set direction, lead from the front, and drive measurable risk reduction through secure-by-design engineering, automation, and high-fidelity detection and response.  You’re the escalation point when it matters—and the architect ensuring it matters less over time.  **Key Outcomes the Role Owns:**  - Security Architecture & Engineering – Define patterns, guardrails and reference architectures across cloud, network, endpoint and application layers   - Platform Strategy & Ownership – Set and execute roadmaps across EDR/XDR, SIEM/SOAR, vulnerability management, PAM/IAM, PKI/KMS, SASE; manage key vendors and MSSPs   - Detection Engineering – Build high-signal detections and SOAR playbooks; optimise for precision, recall, and reduced dwell time   - Incident Leadership – Lead response to major incidents; coordinate cross-functional action, drive root cause analysis, and embed hardening   - Exposure Management – Run risk-based vulnerability management with clear prioritisation, SLA enforcement, and governance   - DevSecOps at Scale – Embed security into CI/CD and IaC; secure cloud-native workloads, containers and Kubernetes   - Identity Security – Strengthen PAM and modern identity controls (JIT/JEA, lifecycle automation)   - Compliance & Assurance – Map and evidence controls across ISO 27001, Essential Eight, PCI DSS, CPS 234; maintain audit readiness   - Security Advisory – Lead design reviews, sign off on high-risk decisions, and influence senior stakeholders   - Scale & Uplift – Drive automation (Terraform, Python, PowerShell), build reusable capabilities, and mentor engineers   **You bring:**  - Proven experience leading security engineering in complex, enterprise or critical infrastructure environments (typically 5+ years)   - Deep expertise across security platforms: EDR/XDR, SIEM/SOAR, vulnerability management, PAM, PKI/KMS, secrets management   - Strong track record in detection engineering, incident response, and post-incident uplift   - Advanced cloud security (AWS/Azure), containers/Kubernetes, and telemetry/logging design   - DevSecOps leadership: CI/CD, Terraform, policy-as-code, SAST/DAST/SCA   - Strong automation capability (Python, PowerShell, Bash) and engineering mindset   - Deep identity and access security knowledge (Entra ID, SSO, OIDC/SAML, MFA, RBAC/ABAC, JIT/JEA)   - Solid grounding in security frameworks (ISO 27001, NIST, Essential Eight, PCI DSS, CPS 234)   - Strong stakeholder influence, vendor/MSSP management, and the ability to mentor and uplift teams   Desirable certifications: CISSP, CCSP, SANS (GCIA/GCIH/GCFA), OSCP, AWS/Azure Security  **What happens next:** At AP+, we believe in the power of passion, pride, and purpose.­ Our team is driven by a shared mission to make a difference in the world of payments, and we're proud to work together towards this common goal.  If you’re ready to be a game changer, please submit your application. The Talent Acquisition team will endeavour to review your application and notify you of the outcome within the next two weeks.    We want to remove all barriers to inclusion so if you need advice or support with your application, we’re here to help. Please reach out to recruitment@auspayplus.com.au. We also encourage you to let us know your pronouns at any point during the recruitment process.   AP+ are not partnering with Recruitment agencies for this role. ## Apply [Apply at Australian Payments Plus](https://apply.workable.com/auspayplus/j/E81032DF0E/apply) --- Powered by [Workable](https://www.workable.com)