About Us

At ANZ, we're applying new ways technology and data can be harnessed as we work towards a common goal: to improve the financial wellbeing and sustainability of our millions of customers.

About the Role

We are seeking an experienced Senior Security Engineer to drive our data security strategy and roadmap. In this individual contributor position, you will develop and implement plans to strengthen data security controls and technical capabilities, identifying and closing any gaps in our data protection posture. You will act as a technical subject matter expert (SME), leading the maturation of core data security solutions and ensuring robust engineering discipline in how these technologies are managed over time. This role works closely with the Data Security leadership team, so excellent communication and presentation skills are a must.

Key Responsibilities: 

• Tech Leadership: Develop Unstructured Data Security tech strategy and multi-year roadmap to enhance our controls and technical capabilities across the organisation. 

• Risk & Gap Management: Proactively identify, assess, and remediate significant gaps in the data security tooling/platforms ensuring continuous improvement. 

• Collaboration: Partner closely with Data Security leadership and cross-domain teams to align data security initiatives with business objectives. Clearly communicate strategies, updates, and recommendations to stakeholders at all levels. 

• Technical Expertise: Serve as the technical lead and SME for data security technologies – driving best-practice implementation and rigorous engineering processes for solutions such as DLP, CASB, encryption mechanisms, and cloud security platforms. 

Key Qualifications & Experience:  

• Extensive Security Engineering Experience: Proven experience in cyber/data security engineering roles, with hands-on expertise in data security controls and tools (e.g. Unstructured Data Protection, Data Loss Prevention, CASB, Encryption, and Cloud Security solutions). 

• Frameworks & Standards Knowledge: Strong understanding of industry security frameworks and methodologies (e.g. NIST Cybersecurity Framework, MITRE ATT&CK). Familiarity with regulatory/compliance standards like APRA CPS 234 (Information Security) and CPS 220 (Risk Management) is highly regarded. 

• Communication Skills: Exceptional communication and presentation abilities, capable of translating technical information into business insights and influencing senior leadership. 

• Education & Certification: Bachelor’s degree in a relevant field is preferred. Professional security certifications (such as CISSP, CISM, or cloud security certifications) are a plus, though not mandatory. 

This is a fantastic opportunity for a seasoned security engineer to shape the future of data security in our organisation. If you’re passionate about strengthening security capabilities and making a broad impact in a collaborative environment, we’d love to hear from you. 

What will your day look like?

• Collaborate with the Data Security leadership team to align on strategic priorities and provide technical input into roadmap development. 

• Conduct regular assessments of existing data security controls and identify gaps or areas for improvement across cloud and on-premise environments. 

• Lead the detailed design and refinement of technical solutions for unstructured data protection, including DLP, CASB, Shadow IT, Encryption, and cloud-native security tools. 

• Translate strategic objectives into actionable engineering tasks with a focus on scalability and sustainability. 

• Review and align security capabilities with industry frameworks (e.g. NIST CSF, MITRE ATT&CK) and regulatory requirements (e.g. APRA CPS 234, CPS 220). 

• Prepare and deliver clear, concise presentations and technical briefings to senior stakeholders, translating complex security concepts into business-relevant insights. 

• Act as a subject matter expert in technical discussions, providing guidance on secure architecture, engineering best practices, and risk mitigation strategies. 

• Monitor emerging threats, trends, and technologies in data security to inform continuous improvement and innovation in the security roadmap. 

• Document engineering standards, processes, and governance models to ensure consistent implementation and lifecycle management of security tools. 

What will you bring?

To be successful in this role, candidates should bring a strong mix of technical expertise, strategic thinking, and communication skills. Here's a breakdown of what’s required: 

Must-Haves: 

• Proven experience in cyber security and/or data security engineering roles, with a focus on designing and implementing data protection controls. 

• Deep technical knowledge of data security technologies such as Data Loss Prevention (DLP), Cloud Access Security Brokers (CASB), encryption, and cloud security platforms (e.g. AWS, Azure, GCP). 

• Strong understanding of industry frameworks and methodologies, including NIST Cybersecurity Framework and MITRE ATT&CK. 

• Familiarity with regulatory and compliance requirements, particularly APRA CPS 234 (Information Security) and CPS 220 (Risk Management). 

• Demonstrated ability to develop and execute security strategies and roadmaps. 

• Excellent communication and presentation skills, with the ability to engage and influence senior stakeholders. 

• Strong engineering discipline with experience in building scalable, sustainable security solutions. 

Good-to-Haves: 

• Experience working in large, complex enterprise environments or regulated industries (e.g. financial services). 

• Exposure to secure software development practices, including threat modelling, secure coding, and security testing. 

• Hands-on experience with security architecture and governance frameworks. 

• Familiarity with risk management processes and tools. 

• Professional security certifications such as CISSP, CISM, CISA, or cloud security certifications (e.g. AWS Certified Security – Specialty, Azure Security Engineer Associate). 

• A degree in Computer Science, Information Security, Engineering, or a related field. 

So why join us?

From the moment you join ANZ, you'll be doing meaningful work that will shape a world where people and communities thrive.

But it's not just our customers who'll feel your impact. You'll feel it too. Because at ANZ, you'll have the resources, opportunities, and support you need to take the next big step in your career.

We're a diverse bunch at ANZ in different roles, different locations, doing different things. That's why we have a range of flexible working arrangements, so our people can 'make work, work for them'. We also provide a range of benefits including access to health and wellbeing services and discounts on selected products and services from ANZ and more.

At ANZ, you'll be part of an organisation where the different backgrounds, perspectives and life experiences of our people are celebrated. That's because we're committed to building a workplace that reflects the diversity of the communities we serve. We welcome applications from everyone and encourage you to talk to us about any adjustments you may require to our recruitment process or the role itself. If you're a candidate with a disability or access requirement, and have an enquiry about the support provided, please let us know on your application or visit ANZ Accessibility and Inclusion Programs for alternate contact methods.

To find out more about working at ANZ, visit https://www.anz.com.au/careers. You can apply for this role by visiting ANZ Careers and searching for reference number 112712 .
 

Job Posting End Date

, 11.59pm, (Melbourne Australia)