Skip to main content

Page loading completed.

Sign in or Create an account
Sign in or Create an account

ICT Cloud and Cyber Security Engineer

25/02/2026
06/03/2026
Permanent - Full Time
Richmond
Community Services and Development

About the organisation

Jesuit Social Services is a social change organisation working to build a just society where all people can live to their full potential. We reflect on the critical factors shaping our contemporary world; the social, political and economic contexts, and we adapt our practice to work with those most in need.

Since 1977, Jesuit Social Services has provided services to some of the most disadvantaged in our community.

We place a high priority on advocacy and are a leader in policy development and research.

Job Description

About the role

The ICT Cloud and Cyber Security Engineer is responsible for designing, implementing, and maintaining secure cloud infrastructure and cyber security measures across the organisation. This role ensures the confidentiality, integrity, and availability of cloud-based systems and data, proactively defending against evolving cyber threats and ensuring compliance with regulatory standards. The engineer collaborates with JSS internal ICT Team, JSS ICT managed service provider and business teams to integrate security into all aspects of cloud and ICT operations.

Core requirements of the role include:

  • Design, Implementation & Architecture
    • Architect secure cloud solutions (e.g. AWS, Azure, Microsoft 365) and integrate security controls into cloud environments.
    • Design and deploy secure cloud infrastructures and applications, adhering to industry-standard security frameworks.
    • Automate security processes and integrate security into operational workflows.
    • Select and configure appropriate cloud services and security tools to minimise risks, vulnerabilities and threats.
  • Monitoring, Detection, and Incident Response
    • Monitor cloud environments for security threats, vulnerabilities, and incidents using advanced security tools (SIEM, IDS/IPS, firewalls).
    • Conduct vulnerability assessments, penetration testing, and risk analyses on cloud systems and applications.
    • Respond to security incidents, perform forensic analysis, and participate in cyber incident management and reporting.
    • Develop and maintain incident response plans, including disaster recovery and business continuity strategies.
  • Compliance, Governance, and Risk Management
    • Ensure cloud environments meet security and regulatory requirements (GDPR, HIPAA, SOC 2, ISO 27001, Essential Eight).
    • Conduct regular audits, compliance checks, and update security measures to align with evolving standards.
    • Maintain a digital asset register and ensure alignment with organisational risk management frameworks.
    • Manage supplier risk and cloud services risk assessments, including third-party vendor compliance.
  • Identity, Access, and Data Protection
  • Manage identity and access controls, ensuring only authorised users can access cloud resources.
  • Implement and maintain encryption, tokenisation, and other data protection mechanisms for sensitive information.
  • Enforce multi-factor authentication and password management processes across all cloud-based services.
  • Security Operations and Continuous Improvement
    • Proactively hunt for threats and indicators of compromise (IOC) within cloud environments.
    • Stay current with emerging cloud security threats, technologies, and mitigation strategies.
    • Regularly report on the status of cloud security, including breaches, vulnerabilities, and compliance metrics.
    • Participate in ongoing cyber security training, awareness programs, and professional development.
  • Collaboration, Training, and Stakeholder Engagement
  • Work with cross-functional teams (IT, development, business units) to identify and remediate security issues.
  • Provide security training and guidance to development and operations teams.
  • Collaborate with third-party vendors and service providers to ensure security requirements are met.
  • Report to governance committees (Risk and Finance Committee, Governance Committee) on cyber security strategy and activities.
  • Advanced and Strategic Duties
    • Lead strategic cloud security initiatives and contribute to the development of cyber security strategy and workplans.
    • Advise on procurement and outsourcing, ensuring security compliance in contracts and vendor relationships.
    • Develop and maintain security documentation, policies, and procedures for cloud operations.
    • Support business continuity and disaster recovery planning, including testing and improvement cycles

Competitive remuneration, plus salary packaging benefit, is offered together with ongoing professional and career development as well as opportunities for personal growth.
 

What Jesuit Social Services can offer you:

  • An organisation that lives its values, through its day to day work 
  • A welcoming and supportive relational environment
  • A comprehensive Induction and Orientation program
  • Ongoing training and development related to your role
  • Employee assistance program
  • A competitive salary plus salary packaging benefits
  • Generous leave

Desired Skills and Experience

About you

This role will suit a candidate with the following skills and experience:

Required: 

• Bachelor’s degree in computer science, Information Security, Cybersecurity, or related field.

• Proven experience in cloud security engineering or a related discipline.

• Hands-on expertise with cloud platforms (AWS, Azure, Microsoft Intune, Microsoft 365) and their security features, configuration, backup and ongoing architecture.

• Previous experience with Microsoft Intune, Microsoft Defender and related endpoint management, configuration and protection.

• Familiarity with regulatory frameworks and compliance standards (RFFR, ISO 27001, Essential 8, NIST).

• Experience with implementing and aligning to industry cyber security standards e.g. ISO27001, NIST, Essential 8)

• Current knowledge of cyber security incident, SIEM management, threat / vulnerability detection and response functions.

• Strong understanding of identity and access management (IAM), encryption, and secure software development practices.

Desirable:

• Previous experience working for a not-for-profit organisation.

• Multi-site, multi service shared service deliverable framework exposure

• Experience working with and managing external managed service providers

• Hands on practice managing significant technology change across varying business functions, internal teams and external service providers.  


How to apply

  • Upload your resume and cover letter incorporating your responses to the Key Selection Criteria from the Position Description.
  • For further information please contact Marcus Hawkins, ICT Manager on 0459 895 777

Applications close at 5.00pm on 7th March 2026

Applications will be reviewed on an ongoing basis and the closing date may be subject to change without notice.

 

Jesuit Social Services is an Equal Opportunity Employer, committed to providing a working environment that embraces and values diversity and inclusion. We celebrate and welcome all people regardless of ethnicity, cultural background, age, gender, sexuality, disability or religious affiliation.

We strongly encourage applications from all community members including Aboriginal and Torres Strait Islander people, members of the LGBTIQA+ community, people with a disability, people of culturally diverse backgrounds and working parents.

Jesuit Social Services is a Child Safe organisation and is committed to protecting children and young people from harm. We require all applicants to undergo an extensive screening process prior to appointment.

Apply
Remember Job
Link