Principal Security Architect (Applications & DevSecOps)

at  AGL Energy

Join the change. Together, we’ll make history.
As we keep the lights on for over four million customers and move towards a more sustainable way of life, it’s an exciting time to be at AGL. We’re re-imagining how homes and business live and work across the country and we want you to be a part of it. This moment will define our time, and your career as you work alongside Australia’s best and brightest minds. You’ll grow and learn in a collaborative, safe and supportive environment and play your part in changing the course of tomorrow.
Everyone at AGL is an important part of building a better energy future and we want you to join in.
About the Team
Technology plays a critical role in the delivery of AGL’s strategy, helping our customers decarbonise the way they live, move and work and transitioning our generation portfolio.
The Technology Architecture team focus on providing reliable technology operations, transforming business partnerships, and leading technology innovation that drive business success and secure our data. Our team of experts are passionate about technology and committed to maintaining the highest security standards in everything we do.
About the Role
We have an opportunity for a Principal Security Architect with a focus on engineering (DevSecOps) security in our Security Architecture team.
This is a newly created critical role in our Security Architecture team that will be responsible for developing application and engineering security strategies that seek to continuously improve the security measures and cyber controls implemented in our OT environments. It has end-to-end accountability of high-level design and implementation of I&AM processes, ensuring the successful delivery of AGL’s Cyber Transformation program and strategic business goals of connecting our customers to a sustainable future and transitioning our energy portfolio.

What you’ll be doing:

• Drive identity and access management frameworks and technology roadmaps
• Develop and evolve OT security reference architectures and analyse technology/tools
• Define and maintain security architecture guidelines and patterns
• Deliver practical, reliable and accurate conceptual solution architectures and high-level security designs aligned to broader Technology and Cyber Enterprise Strategy
• Assist stakeholders with understanding the severity and impact of cybersecurity risks
• Provide advocacy, direction and advise for technology and security engineering solutions

About You

What you’ll bring to the table:

• Technical expertise: a mix of security architecture and security engineering experience within OT environments
• Cybersecurity Knowledge: Deep understanding of OT security and frameworks (e.g. Purdue model)
• Network access: experience designing secure OT network controls in air-gaped networks
• Risk Management: proficient in conducting risk assessments
• Communication: strong stakeholder engagement and presentation skills
• Problem-Solving: effective analytical and problem-solving mindset
• Project Management: ability to prioritise tasks within agreed timeframes and budget
• Compliance: proven application of industry standards and regulations such as the Security of Critical Infrastructure Act and Australian Energy Sector Cyber Security Framework, or equivalent

Ready to join the change? We’d love to see your application submitted by Sunday, 1 September 2024.
Inclusion at AGL
At AGL, we value diversity and welcome applicants from various backgrounds, including Aboriginal and/or Torres Strait Islander peoples, individuals with disabilities, culturally diverse individuals, and members of the LGBTQ+ community. AGL is dedicated to maintaining a diverse workforce and encourages applicants to share their lived experiences.
We offer reasonable adjustments throughout the recruitment process and respect the privacy of those who choose not to disclose. To learn more visit:
www.agl.com.au/careers
AGL is a Circle Back Initiative employer - we commit to respond to every applicant.
Location:
Docklands VIC 3008
Job Family Group:
Information Technology - Internet-Base

• Drive identity and access management frameworks and technology roadmaps
• Develop and evolve OT security reference architectures and analyse technology/tools
• Define and maintain security architecture guidelines and patterns
• Deliver practical, reliable and accurate conceptual solution architectures and high-level security designs aligned to broader Technology and Cyber Enterprise Strategy
• Assist stakeholders with understanding the severity and impact of cybersecurity risks
• Provide advocacy, direction and advise for technology and security engineering solution