Title: Privileged Access Engineer Location: Sydney or Melbourne Job Description: Full-time Company Description Supporting millions of Aussies since 1988 with low fees and competitive long-term performance. Profits back to members, not shareholders Please note Rest does not accept speculative resumes from recruitment agencies Rest will review applications prior to the closing date and may close the role earlier Job Description Join Rest's Information Security team Established in 1988, Rest is one of Australia’s largest profit-to-member superannuation funds. We support more than two million members, with around $100 billion of funds under management and are recognised as a responsible investment leader*. We believe when members understand and engage with their super, they’re more likely to get a better retirement outcome. Everything we do at Rest is underpinned by our values and behaviours, we want to Be Daring, Keep it Simple, Take Action and Have Grit. To put it simply we want our people to thrive and love the work they do. As an Privileged Access Engineer, you will play a critical role in designing, implementing, and managing Privilege Identity Access Management solutions across the Rest environment. Your primary focus will be on deploying and maintaining CyberArk Privileged Cloud solution to secure privileged access throughout the enterprise. This role requires a proactive and security-focused mindset, working closely with IT, security and the business to mitigate risks, enforce compliance, and optimize privileged access controls. You’ll contribute to the strategic evolution of Rest's IAM landscape, ensuring that our systems, applications, and data remain protected against emerging threats. - Design, implement, and manage CyberArk Privileged Cloud solution to secure privileged accounts and sensitive credentials across the enterprise. - Lead the installation, configuration, and maintenance of CyberArk privileged Cloud components including Vault, PAS, PVWA, CPM, PSM, and PTA. - Monitor and maintain daily operations of PAM systems to ensure high availability, optimal performance, and robust security of privileged access. - Oversee the full lifecycle management of privileged accounts—provisioning, deprovisioning, credential rotation, and auditing—across platforms such as CyberArk Privilege Cloud, Microsoft Entra ID, and SailPoint Identity Security Cloud (ISC). - Conduct regular privileged access reviews, ensuring strict adherence to the principle of least privilege and compliance requirements. - Investigate and respond to security incidents or anomalies related to privileged access, working closely - with the incident response team for swift resolution and root cause analysis. - Partner with IT and application teams to integrate PAM solutions seamlessly with critical enterprise systems and tools. - Develop and enforce policies governing privileged access in line with security frameworks and compliance standards. - Manage patching, upgrades, and troubleshooting of all CyberArk components, ensuring a secure and stable environment. - Provide technical expertise, guidance, and training to internal teams and end-users on best practices in identity and access management. - Perform regular audits and generate detailed reports on privileged account usage, policy violations, and compliance status. - Identify and resolve issues related to authentication, access controls, and application integration within the broader identity ecosystem. - Maintain comprehensive documentation of configurations, processes, and operational best practices across all supported identity platforms. Qualifications - Hands-on experience implementing CyberArk Privilege Cloud solutions, including Core PAS, Endpoint Privilege Manager (EPM), Conjur, Secure Web Session (SWS) and Secure Infrastructure Access (SIA). - Proven expertise in integrating CyberArk with Active Directory, major cloud platforms (AWS, Azure, GCP), and DevOps tools for seamless privileged access management. - Experience with Microsoft Windows Server, Solaris, and Red Hat Enterprise Linux environments, - PowerShell scripting and API integration for automating administrative tasks and streamlining system operations. - Solid experience with Multi-Factor Authentication (MFA) and Single Sign-On (SSO) technologies. - Familiarity with SIEM & ServiceNow integration to enhance security monitoring and incident response. - Strong infrastructure background, preferably within AWS, Azure, or GCP environments. - Foundational knowledge of network architecture, including firewalls, DNS, whitelisting, and general networking principles. - Excellent communication skills, with the ability to explain complex architectural concepts and technical issues to both business and technical audiences. - Strong analytical and problem-solving abilities, capable of translating intricate requirements into effective PAM solutions that drive business value. Additional Information Our benefits have been designed so you can tailor your experience with us and include: - Personal and professional development opportunities - Hybrid working - Purchase leave scheme and gender neutral 16 weeks paid parental leave - Super Contribution Continuation for 12 Months of parental leave - Linkedin Learning - Income Protection Insurance - Rest Excellence awards (peer recognition awards based on Rest’s values and behaviours) - Rest Stops - meeting free breaks If you share our values, believe you can help make a difference for our members and want to be part of a leading superannuation fund with a Super culture, please click Apply Now. Rest is committed to creating a flexible work environment and culture that embraces diversity, equity, and inclusion - where people feel welcome, safe to be themselves and inspired to do their best. We value the different backgrounds, lived experiences and abilities our diverse team brings. We welcome and encourage applications from candidates of all ages, cultural backgrounds, faiths, gender identities, sexual orientations and thinking styles. This includes people with disability, neurodiverse individuals, Aboriginal & Torres Strait Islander peoples and those with disrupted work history due to career or other breaks. Please note only people with the right to work in Australia will be considered. *Funds under management as at 31 July 2025. Rest is recognised as a Responsible Investment Leader by the Responsible Investment Association Australia (RIAA) in its Responsible Investment Benchmark Report 2022

Role Description Working within the Technology, Applications and Research Division, we are expanding the Virtual Environment & Human–Machine Interface (VEHMI) Team to support the growing demand for immersive technologies, digital twins, advanced user interfaces and haptic interaction systems. The successful candidate will contribute to ESA, EC and internal projects developing next‑generation interfaces for mission operations (rovers, on-orbit servicing), astronaut training, robotic teleoperation, and simulation environments. This role addresses the increasing need for high‑fidelity virtual / augmented / extended reality environments and advanced teleoperation systems enabling safer, more intuitive and more efficient interaction between humans and complex space systems. Tasks and Responsibilities - Design and implement VR/AR/XR solutions (including modelling, simulation and rendering) for space rated application and missions. - SW human–machine interfaces (HMI) including GUIs, visualization components, dashboards, and user‑interaction logic. - Interface robotics devices (haptic force‑feedback interfaces, wearable haptics, astronaut exercises systems) with real‑time simulators and immersive environment. - Perform thorough testing and validation of implemented improvements and iterate on the design to achieve optimal results. - Collaborate with systems, robotics, and ground‑segment engineers to ensure seamless integration of virtual environments into existing mission tools. - Produce technical documentation and contribution to project reviews. - Support business development and proposal writing for future VR/XR/HMI‑related opportunities. Qualifications - 3+ years of experience in VR/AR/XR development, HMI systems, simulation environments or real‑time graphics. - Proficiency with VR engines (Unity, Unreal), real‑time rendering and 3D scene integration. - Experience integrating haptic devices, teleoperation interfaces, or human‑in‑the‑loop systems. - Development of applications with VR, AR or MR Headsets (e.g. Meta Quest, HTC Vive, Valve Index, Others). - Programming languages (e.g. C/C++, C#, Blueprints), Communication interfaces (e.g TCP/IP, HTTP, UDP, CAN). - Experience with GUI frameworks and front‑end technologies (e.g., Qt, React, custom mission tools). - Understanding of robotics interfaces, digital twin architectures and mission‑operations. - Knowledge of real‑time physics simulation, game‑engine plugin development or scientific visualisation. - Ability to work in an international team, organise tasks and meet deadlines. - Strength to self-discipline and work ethic. - Excellent written and spoken English. Benefits - Working within an exceptional sector with Staff located in Belgium, Germany and the Netherlands. - A professional and modern working environment with motivated Administrative Staff, Engineers, Astronaut Training Instructors and Scientists coming from all different horizons and countries with a common passion for space and their own expertise. - A full-time position with an indefinite contract of employment. - A competitive remuneration package and good working conditions. - Working from home in part can be a possibility. - An individualised training and development programmes.

Role Description The Privileged Access Management (PAM) Engineer reports to the Information Security Manager and is responsible for designing, implementing, and operating enterprise PAM capabilities using Microsoft Security technologies and related platforms. This role secures privileged identities and access to critical systems, enforces least‑privilege and Zero Trust principles, and supports regulatory and audit requirements. The PAM Engineer collaborates closely with IAM, Security Operations, Infrastructure, and Application teams to reduce organizational risk while maintaining a secure and user‑friendly access model. The role may support security operations and incident response activities when privileged access is involved. Duties/Responsibilities - Core PAM Engineering - Design, implement, and maintain PAM solutions across cloud and hybrid environments using Microsoft Entra ID, Privileged Identity Management (PIM), Conditional Access, and related Microsoft security tooling. - Onboard and manage privileged user, service, and application accounts, including credential vaulting, rotation, and lifecycle management. - Configure and maintain Just‑In‑Time (JIT) access and privileged role workflows. - Ensure all in‑scope systems, applications, vendors, and integrations are protected by PAM controls. - Ensure availability, reliability, and security of PAM platforms and services. - Monitoring, Detection & Incident Support - Monitor PAM‑related alerts and logs using Microsoft Sentinel and Defender XDR. - Support investigation and response to incidents involving privileged account misuse or compromise. - Collaborate with Security Operations and MSSPs to enhance PAM monitoring and detection use cases. - Governance, Risk & Compliance Support - Support periodic access reviews and privileged role attestations. - Maintain PAM documentation, standards, runbooks, and operational procedures. - Provide input to security policies, standards, and annual review processes under the guidance of IT and Security leadership. - Support audits and compliance reporting related to privileged access. - Integration & Enablement - Integrate PAM controls with IAM, endpoint, cloud, SIEM, and application platforms. - Partner with application owners and business stakeholders to define privileged access roles and requirements. - Provide technical guidance and training to stakeholders on PAM processes and best practices. - Automation & Continuous Improvement - Develop automation and scripting for PAM account management, reporting, and operational efficiency. - Track PAM KPIs and apply metric driven improvements to reduce risk and operational friction. - Evaluate emerging Microsoft security features and recommend roadmap enhancements. Qualifications - Hands‑on experience with Microsoft Entra ID, Privileged Identity Management (PIM), Conditional Access, and Microsoft Defender products. - Strong understanding of privileged access models, least‑privilege principles, and Zero Trust security architecture. - Experience managing identities and access within Microsoft 365 and Azure environments. - Experience with Windows platforms, Active Directory, and authentication/authorization concepts. - Scripting or automation experience (PowerShell preferred). - Familiarity with SIEM/XDR platforms (Microsoft Sentinel and Defender XDR preferred). - Technical documentation and runbook development skills. Professional & Behavioral Skills - Strong communication skills with the ability to explain technical concepts to non‑technical audiences. - Proven ability to collaborate across security, IT, and business teams. - Strong analytical, troubleshooting, and problem‑solving skills. - Ability to operate effectively in fast‑paced and regulated environments. - Continuous‑learning mindset with adaptability to evolving security technologies. KPI - Policy Implementation: Timely implementation and maintenance of PAM policies and controls. - Incident Reduction: Reduction in privileged account-related security incidents. - Audit Compliance: Compliance with internal and external audit requirements. - Integration Success: Successful integration of Microsoft Security Suite components. - Stakeholder Feedback: Positive feedback from stakeholders on PAM processes and support. Education & Experience - Bachelor’s degree in computer science, Information Technology, or a related field preferred. - 3+ years of experience in Microsoft Windows and Microsoft 365 environments with direct responsibility for identity or security controls. - 2+ years of hands‑on experience with Microsoft Azure, Entra ID, Defender, and Purview portals. - Experience supporting hybrid (cloud and on‑premises) environments. - Experience with application authentication (IdP) and authorization (IdM) concepts. - Experience working across multiple concurrent projects in a dynamic environment. Preferred Experience & Certifications - Microsoft Certified: Identity and Access Administrator Associate. - Microsoft Certified: Security Operations Analyst Associate. - CISSP or equivalent security certification. - Additional Microsoft Security certifications. - Experience with IAM, Active Directory, Windows Server, SQL Server, or networking fundamentals (DNS, DHCP, LAN/WAN).

Senior ICT Engineer KBR's Infrastructure Solutions business employs over 1,400 professionals across Australia. Our strong track record of project delivery, trusted partnerships, and respected industry reputation continue to drive sustained growth, creating exciting opportunities for experienced professionals ready to make an impact. At KBR, we foster a collaborative "One Team" culture where our people are supported, valued, and empowered to thrive. You'll work alongside industry leaders on complex, high-profile projects that help shape Australia's future infrastructure. The Opportunity We are seeking a Senior ICT Engineer to join our expanding team, delivering critical infrastructure projects across sectors including Transport, Buildings, Defence, and Energy. This role is ideal for an experienced engineer who is ready to take ownership of technical delivery, contribute to strategic design decisions, and mentor junior team members. You will play a key role in the design and delivery of ICT systems across complex, multidisciplinary projects, while influencing best practice and driving quality outcomes. Key Responsibilities Technical Leadership & Project Delivery - Lead the delivery of ICT engineering solutions across complex infrastructure projects - Develop and review detailed designs, technical documentation, and specifications - Undertake advanced investigations, site assessments, and technical analysis - Provide technical guidance across ICT systems, including data networks, communications, and associated infrastructure - Ensure solutions are aligned with client requirements, standards, and project objectives Stakeholder Engagement & Collaboration - Work closely with clients, project stakeholders, and multidisciplinary teams to deliver integrated outcomes - Provide technical input into project planning, risk identification, and solution optimisation - Mentor and support junior engineers, contributing to team capability development Governance, Quality & Standards - Maintain high standards of technical quality, ensuring compliance with relevant guidelines and KBR processes - Oversee the preparation and review of project documentation and deliverables - Contribute to continuous improvement initiatives and knowledge sharing across the team Capability Development & Innovation - Stay current with emerging ICT technologies and industry trends - Contribute to the ongoing development of engineering standards, tools, and methodologies - Actively support a high-performing, collaborative team environment About You You are a proactive and technically strong ICT Engineer with a passion for delivering high-quality solutions in complex environments. You bring a balance of hands-on expertise, problem-solving capability, and the confidence to engage with stakeholders and lead elements of project delivery. What You Bring - Degree in Electrical, Communications, or ICT Engineering - 7+ years' experience in ICT, telecommunications, or infrastructure engineering (consulting experience highly regarded) - Strong understanding of ICT systems, networks, and/or data centre environments - Proven experience contributing to or leading design and delivery on infrastructure projects - Excellent communication and stakeholder engagement skills - Ability to work autonomously while contributing to team success - Proficiency in relevant design tools and Microsoft Office suite - Full Australian Working Rights and ability to obtain Security Clearance Desirable - Experience in consulting or working on major infrastructure projects - Familiarity with relevant Australian and international standards - Exposure to Defence, Transport, Energy, or mission-critical environments Why KBR? At KBR, we value our people and are committed to creating an environment where you can thrive-professionally and personally. Our benefits include: - Competitive, market-aligned salaries reviewed annually - 20 days annual leave + additional leave accrual (up to 33 days total) - Flexible and hybrid working arrangements - Salary packaging and novated leasing options - Paid professional memberships - Health and life insurance discounts - Employee stock purchase plans - Structured career development and progression pathways - Modern offices and collaborative working spaces - Access to wellbeing and health programs Help shape tomorrow by applying today. Our people are at the heart of everything we do. We are committed to fostering an inclusive environment where everyone feels safe, supported, respected, and empowered to belong, connect, and grow. #LI-DNP #LI-DNI  #S-DNI