Purpose This role is responsible for establishing and maintaining the enterprise-wide IT security infrastructure to ensure the security, integrity, and availability of the company’s information assets. This includes the rigorous application of information security and information assurance policies, principles, and practices, with a strong emphasis on Incident Response readiness and operational execution. The position will lead efforts to detect, analyze, contain, eradicate, and recover from security incidents while continuously improving response processes, tooling, playbooks, and defensive capabilities. Responsibilities - Provide efficient and effective Infrastructure Security Operations Support of all supported infrastructure security components - Investigate and analyze common security incidents, including malware infections, phishing attempts, unauthorized access, and suspicious network activity. - Develop, maintain, and optimize Incident Response playbooks and SOPs to ensure consistent, efficient detection, containment, eradication, and recovery processes. - Collaborate closely with the MSSP to refine detection use cases, validate alerts, coordinate response actions, and improve overall SOC effectiveness. - Drive containment and remediation efforts during active security events, working with cross‑functional teams to minimize impact and ensure rapid recovery. - Support and enhance email security controls, including phishing analysis, message tracing, and mail flow/security policy tuning. - Participate in an on‑call rotation to provide timely response during off‑hours incidents. - Conduct root‑cause analysis and produce post‑incident reports, identifying gaps and recommending improvements to tooling, processes, and security posture. - Assist in threat hunting activities to proactively identify emerging threats or abnormal behaviors in the environment. - Contribute to continuous improvement of logging, monitoring, and alerting across security platforms. - Provide timely and effective maintenance and repair support on all supported infrastructure security components - Conduct efficient security monitoring of all supported infrastructure security components to include but not limited to firewalls and intrusion detection/prevention systems - Ensure effective change control and configuration management of all supported infrastructure security-related components to establish and maintain consistency of their performance and functional and physical attributes - Develop and execute advanced automation and orchestration activities as applicable across several information security domains - Some familiarity administering the following technology stack: Splunk, Microsoft Azure and Defender, CheckPoint Firewall/Email, and Imperva WAF. - Manage risk identification within the technical architecture in partnership with infrastructure teams - Keep abreast of and gain expertise in the evolving technology and understand how new technologies could be applied to our security environment - Research, test and understand the relevant products and product capability - Participate in the vendor community on relevant products and product capability - Work under the guidance from more senior information security engineers - Mentors’ junior information security engineers About You - Bachelor's degree in information systems, or related field, OR 5-7 years of experience in the information security field - Relevant Industry certifications such as CISSP, CISM, and AZ-500 - Demonstrate good judgment in solving problems, identifying problems in advance, and proposing solutions - Strong analytical and organizational skills, with attention to detail - Demonstrate strong verbal and written communication skills - Ability to multi-task, prioritizing multiple objectives and initiatives - Able to work in a team environment and with a diverse group Physical Requirements - Ability to travel up to ~10% of the time, which may include weekends and evenings, as needed - Most work is performed in a temperature-controlled environment - Incumbent may sit for long periods of time at a desk or computer terminal - Incumbent may use calculators, keyboards, telephone and other office equipment in the course of a normal workday - Stooping, bending, twisting and reaching may be required in completion of job duties Our Values Ability to demonstrate, understand and apply our workplace values. Simplicity (operate) – the drive to identify root cause and innovate to remove complexity to deliver the best outcome Heart (emotion) – the passion that drives you to get up every day and work hard to strive for excellence Performance Excellence (mindset) – clearly defining high expectations, driving ownership of key roles and responsibilities, executing with integrity and emphasis while creating a culture of accountability Respect (philosophy) – taking pride in being inclusive and treating everyone who comes through the doors with respect Benefits - 401K company match up to 4% - Paid Time Off - Medical Insurance options including FSA & HSA - Vision Insurance - Dental insurance - Employee Assistance Programs - Team Member Referral Program - Tuition Reimbursement - Wellbeing Program - Career development opportunities The above statements are intended to describe the general nature of the work performed by the employees assigned to this job. All employees must comply with Company policy and applicable laws. The responsibilities, duties and skills required of personnel so classified may vary within each department and /or location.

• Perform implementation of CNAPP and CSPM tools in multi-account AWS and Azure environments. • Implement IaC scanning tools within the CI/CD Pipelines. • Develop Infrastructure as code in Cloud Formation or Terraform. • Develop custom control checks within CNAPP Platforms using JSON, REGO, or Terraform. • Analysis – identifies and evaluates potential threats and vulnerabilities to the public cloud environments network, applications, infrastructure, and systems. • Issue Resolution – leads the resolution of identified issues in public cloud environments. • Deep understanding of Kubernetes and microservices security best practices. • Performs container registry scanning. • Reviewing and creating metrics, KPIs, and KRIs to track overall cloud security posture. • Create, maintain, and update runbooks for cloud configuration checks. • Assess the overall security posture of cloud security infrastructure and workloads. • Advise customers on Cloud security best practices.

Title: Senior Technology & Security Consultant Location: Fortitude Valley Australia Job Description: Company Description Work with Us. Change the World. At AECOM, we're delivering a better world. Whether improving your commute, keeping the lights on, providing access to clean water, or transforming skylines, our work helps people and communities thrive. We are the world's trusted infrastructure consulting firm, partnering with clients to solve the world's most complex challenges and build legacies for future generations. There has never been a better time to be at AECOM. With accelerating infrastructure investment worldwide, our services are in great demand. We invite you to bring your bold ideas and big dreams and become part of a global team of over 50,000 planners, designers, engineers, scientists, digital innovators, program and construction managers and other professionals delivering projects that create a positive and tangible impact around the world. We're one global team driven by our common purpose to deliver a better world. Join us. Job Description Given our strong pipeline of secured and upcoming projects, we are looking for an ICT / Comms all-rounder with security experience, to join our team in Brisbane. We are looking for a Senior level consultant to join our national ICT Team. How you'll make a difference: - Lead the ICT and Security design and delivery on projects, responsible for project costing, client engagement and briefing, development of technical solutions, documentation of design and specifications, and liaising with contractors during construction. - Technical design of ICT and Security systems including communications passive infrastructure (structured cabling systems), IT Network (LAN, WAN, VoIP, Wireless), and electronic security systems, including CCTV, Electronic Access Control, intruder alarm, perimeter intrusion detection, Type 1A Security Alarm Systems, and Cyber Security. - Collaborate with the local Buildings and Places team and national AECOM Technology Advisory group on a diverse range of projects in sectors including health, education, aviation, defence and justice. - Mentor and provide technical guidance to junior team members and build your own career through professional development and training. Ability to apply for and maintain an Australian Government Security Clearance Qualifications The qualities that help you thrive: The following qualifications and experience are highly desired, but if you don't tick all the boxes, you could still be a perfect fit for this role. Please apply, all applications will be considered. - Relevant Engineering Qualification in Electrical, ICT, Communications with, ideally, 10 + years of experience. - Holding (or eligible to obtain) a Security Advisor Licence and a Professional Engineering Registration in QLD. - Excellent technical and project delivery skills with a proven ability to coordinate and liaise effectively with clients and contractors. Your attention to detail and ability to prioritise tasks and communicate effectively is essential to work in a multidisciplinary team to deliver the right solution, on time, every time. - Demonstrated experience leading and delivering ICT and Security designs and consulting services within a Buildings environment. - A strong consultative approach, with an ability to work with technical engineers and non-technical project stakeholders. Additional Information Why you'll love working with us: - Flexible work arrangements, including alternative start/finish times, part-time, job-sharing and hybrid work options - Purchase up to 6 weeks additional annual leave per year - Flex public holidays - swap Easter or other holidays for ones that suit you better - Continuous learning and growth - lunch and learns, professional development courses, financial study assistance, 5 days paid study leave, global career opportunities Ready to push the limits of what's possible? We welcome applications from individuals of all backgrounds, including those with disabilities, additional health or mental health needs, and/or neurodiverse conditions. If you require any adjustments during the hiring process, please let us know. Applications are reviewed as they come in, and the role may close earlier than expected, so if this opportunity sounds like you, we encourage you to apply as soon as possible. Learn more about life at AECOM: LinkedIn, Facebook , Instagram, X, YouTube - explore our AECOM voices, employee stories, latest projects, and much more! AECOM acknowledges the Traditional Owners and Custodians of the lands on which we, our clients and our communities live and work around Australia. We pay our respects to their cultures and to their Elders - past, present, and emerging. We are committed to connecting to Country in our work through meaningful engagement with First Nations peoples and businesses. Find out more about our Australian Reconciliation Action Plan here: https://aecom.com/au/our-vision-for-reconciliation/. About AECOM AECOM is the world's trusted infrastructure consulting firm, delivering professional services throughout the project lifecycle - from advisory, planning, design and engineering to program and construction management. On projects spanning transportation, buildings, water, new energy and the environment, our public- and private-sector clients trust us to solve their most complex challenges. Our teams are driven by a common purpose to deliver a better world through our unrivaled technical and digital expertise, a culture of equity, diversity and inclusion, and a commitment to environmental, social and governance priorities. AECOM is a Fortune 500 firm and its Professional Services business had revenue of $16.1 billion in fiscal year 2025. See how we are delivering sustainable legacies for generations to come at aecom.com and @AECOM. Freedom to Grow in a World of Opportunity You will have the flexibility you need to do your best work with hybrid work options. Whether you're working from an AECOM office, remote location or at a client site, you will be working in a dynamic environment where your integrity, entrepreneurial spirit and pioneering mindset are championed. You will help us foster a culture of equity, diversity and inclusion - a safe and respectful workplace, where we invite everyone to bring their whole selves to work using their unique talents, backgrounds and expertise to create transformational outcomes for our clients. AECOM provides a wide array of compensation and benefits programs to meet the diverse needs of our employees and their families. We also provide a robust global well-being program. We're the world's trusted global infrastructure firm, and we're in this together - your growth and success are ours too. Join us, and you'll get all the benefits of being a part of a global, publicly traded firm - access to industry-leading technology and thinking and transformational work with big impact and work flexibility. As an Equal Opportunity Employer, we believe in each person's potential, and we'll help you reach yours.

YOUR PROFILE: We’re looking for a Tech Lead with a systems‑thinking mindset to lead the technical design and execution of integrated digital ecosystems. You’ll be responsible for ensuring our solutions communicate in a secure, efficient, and scalable way—overseeing everything from API architecture to critical data transfer and security protocols. Key Responsibilities: Integration Architecture Design and oversee integration patterns (both synchronous and asynchronous) between core platforms and third‑party services. Data Governance & Security Implement and enforce standards for PGP encryption, identity management (SSO / SAML / OAuth), and secure file transfers via SFTP and NDM (Network Data Mover). Technical Leadership Guide the development team in adopting best practices, conducting code reviews, and unblocking complex technical challenges. Compliance & Screening Ensure integrations comply with screening processes (watchlists, security validations, and compliance checks) to safeguard operational integrity. Stack Optimization Evaluate and introduce new technologies to improve the latency, security, and observability of existing integrations. Job Description - Bachelor Degree in Computer Sciences or equivalent & 5+ years of experience - API Expertise: Deep knowledge of REST, GraphQL, and gRPC, as well as full API lifecycle management (API Management). - File Transfer: Solid experience configuring and securing SFTP channels and enterprise-grade protocols such as NDM. - Security: Advanced knowledge of data encryption (PGP), digital signatures, and SSO authentication protocols (Okta, Azure AD, Ping Identity). - Compliance Integrations: Experience integrating screening engines and real-time data validation solutions. - Infrastructure: Knowledge of Cloud architectures (AWS, Azure, GCP) and microservices orchestration. Competencies (Soft Skills): - Ability to translate business needs into robust technical requirements. - “Security by Design” mindset. - Strong capability to lead agile teams and mentor senior-level professionals. · Excellent compensation and benefits · Flexibility and balance with your personal and professional life. · Career path, trainings and real growth opportunities · Engaging and challenging projects. · Inclusive and Collaborative Culture · Open and Effective management. Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market leading capabilities in AI, generative AI, cloud and data, combined with its deep industry expertise and partner ecosystem. At Capgemini Mexico, we aim to attract the best talent and are committed to creating a diverse and inclusive work environment, so there is no discrimination based on race, sex, sexual orientation, gender identity or expression, or any other characteristic of a person. All applications welcome and will be considered based on merit against the job and/or experience for the position.