Network Security Architect (New South Wales)

Skills- Network security, GCP, AI/ML, IAM Description Role Context Contract engagement scoped to the design and delivery of a network inventory and anomaly detection platform on Google Cloud Platform (GCP) with AI/ML capabilities. The Security Architect will have full ownership of the Security Risk Assessment (SRA) process and all related governance artefacts, ensuring the platform is delivered in alignment with Client Cyber Security policy and regulatory obligations. Key Responsibilities
- Own and drive the end-to-end SRA lifecycle via the SRA360 Portal — from initiation through to Cyber Assurance Certificate issuance
- Prepare and maintain all SRA artefacts including system and network architecture diagrams, access and authentication models, data flow diagrams, and security testing evidence
- Lead and coordinate engagement with the Cyber Assurance Control Team, including scheduling SME reviews and resolving vulnerabilities or control gaps
- Initiate and manage the ORCA submission (ORCA process via JSM), coordinating sub-assessments across Data Governance (DGA), Privacy (PIA), and Responsible AI (RAIA) as applicable
- Determine TSSR/SOCI applicability via SRA outcomes and manage accordingly
- Maintain a risk register; formally accept or mitigate residual risks per the Client Cyber Risk Management Process
- Ensure the platform's GCP architecture aligns to Client Cyber Security standards including encryption, IAM, logging, and network controls
- Engage with the Solution Review Board (SRB/ARB) to support architecture endorsement as required
- Coordinate penetration testing, vulnerability scanning, cloud security scans, and source code reviews in line with Client security testing requirements
- Ensure AI/ML components meet Responsible AI Assessment (RAIA) requirements and are registered in the Client AI Register
- Support CMDB/MEGA registration of all platform components Technical Skills — Must Have
- Deep experience with GCP security architecture — IAM, VPC Service Controls, Cloud Armor, Security Command Center, Cloud Logging/Monitoring
- Experience securing AI/ML platforms — data pipeline security, model access controls, prompt injection risk, and adversarial threat modelling
- Network security fundamentals — firewalls, network segmentation, anomaly detection systems, and telemetry pipelines
- Proven experience authoring security architecture artefacts (HLSDs, threat models, security test plans, risk registers)
- Solid understanding of encryption standards, secrets management, and PKI Governance & Compliance — Must Have
- Demonstrated experience completing Telco or enterprise SRA processes end-to-end
- Familiarity with NIST SP 800-53, ACSC ISM, Australian Privacy Act, and SOCI Act obligations
- Experience navigating multi-domain risk and control frameworks (security, privacy, data governance, responsible AI)
- Ability to engage and influence Cyber Assurance SMEs and platform owners to drive timely SRA closure. Note- Must have valid Australian work Authorization. #J-18808-Ljbffr Apply on Kit Job: kitjobau.com/job/3rr2j2