• Contribute to the development and implementation of agency-wide strategies, standards, tools, and best practices in food security and livelihoods that effectively engage partners, donors and governments. Help ensure a cross-sectoral approach integrating gender, protection mainstreaming, and disaster risk reduction. • Provide technical solutions to regional and CP teams, remotely and on-site, for strategic planning and how to best apply program design and implementation standards, best practices, partnership principles, tools, and M&E, ensuring high-quality implementation. • Contribute to regional and CP efforts to pre-position CRS for growth opportunities in food security and livelihoods. Lead or contribute to the development of the technical design for large and/or complex proposals, including defining appropriate monitoring systems and indicators. • Advise project teams on integrating donor strategies, priorities and technical requirements into CRS’ approach. • Contribute to capacity strengthening initiatives in food security and livelihoods programming for staff and partner through helping develop learning and training strategies and agendas/curriculums, conducting trainings and workshops, and mentoring and coaching to CP staff. • Contribute to knowledge management and learning through collecting and analyzing program data, evaluating strategic projects, assisting with measuring program impact, capturing and sharing lessons learned and best practices, and research and internal reports. • Establish and maintain relationships with donors, peer organizations, research and other institutions. Participate in forums in food security and livelihoods to collect and share best practices and promote CRS’ work.

Cyber Security Architect Location: Frankston, Australia Hybid Job Description: Who are we? We're here to help people live well and create a better and more sustainable future. We support healthy and liveable communities by delivering water, sewerage and recycled water services to 1.77 million people who rely on us every day and every night. At South East Water, we innovate with purpose and act with care to deliver healthy water for life. Fresh thinking and collaboration are at the heart of our organisation. We are constantly learning, embracing the challenges of today and excited by the opportunities that tomorrow will bring. The role An exciting new role has just become available in South East Water's Business Technology Services Group. Reporting to the Enterprise Architecture and Platform Manager, the Cyber Security Architect will be responsible for evaluating, designing and implementing security architectures to ensure the protection of SEW assets, data and infrastructure. The role will work closely with the Enterprise security, resilience, IT and OT teams, to ensure security is embedded by design across the technology landscape, including projects, platforms, systems and business solutions. Some key accountabilities of the role will include; - Developing and maintaining the security architecture blueprint; - Designing and maintaining security reference architectures and patterns for use across data, digital platforms, systems, projects, hybrid cloud infrastructure and operational technologies; - Providing specialist advice on architecture supporting major programs, projects and initiatives; - Supporting the selection, integration and architecture alignment of key security tools and platforms; - Ensuring architecture designs and security controls are aligned with industry frameworks (NIST, VPDSS, ISA 62443, Essential 8, CIS, etc.) and security best practices; - Securing data governance, infrastructure, BTS NWW/SDLC and supporting DevSecOps Who are you? To be considered for this role, candidates should possess a Bachelor's degree in computer science, Cybersecurity, Information Security or other related field and preferably possess industry certifications including CISSP, TOGAF, CCSP, SABSA or their equivalent. Possessing a minimum of five (5) years' experience in cybersecurity architecture and consulting, the following key knowledge, skills and experience will ensure your success; - Hands-on experience with threat modelling, advanced security designs and automation - Expertise in enterprise security architecture with a focus on cloud (Azure, AWS), network, SaaS\PaaS\IaaS and application security - Expertise in on-prem infrastructure and network security architecture and multi-tier application architecture - Familiarity with security frameworks and compliance requirements, DevSecOps, secure-by-design and zero-trust architectures - Strong knowledge of architecture practices and security technologies (SIEM, SOAR, XDR, IAM, DLP, WAF, CASB, Cryptography) - Ability to communicate complex security concepts to technical and non-technical stakeholders - Strong analytical and problem-solving skills with the ability to assess security risks and applying appropriate architectural pattern What's in it for you? Working at South East Water means you can enjoy a wealth of benefits, starting with the chance to be part of an organisation deeply committed to environmental initiatives and sustainability; one who has been recognised as one of the top 101 Workplaces for Women in Australia by Work180 for the past two consecutive years and a 2026 Finalist in the Work180 Equitable Workplace Awards 'Flexible Working' category. South East Water cultivates a dynamic culture that emphasises collaboration and strong work ethics, supported by career-focused learning and development opportunities. As a SEW employee, you can enjoy the following offerings from our benefits package: - Access to My Fitness Passport, an Employee Assistance Program (EAP), annual flu shots, and health checks. - Work-life balance with flexible working arrangements, including hybrid work options and leave purchasing. - 15 weeks paid parental leave and paid superannuation on eligible portions of unpaid parental leave. - Additional leave offerings, such as cultural and ceremonial leave and study leave. - Head office with modern facilities and panoramic beachfront views, a separate parents' room, a prayer and meditation room and an onsite cafe. - Limited free onsite and offsite car parking available, as well as pay-as-you-go parking options nearby. - Opportunity to be part of great initiatives involving the local community. We're for everyone Our people are as diverse as the communities we serve. It makes us better learners, thinkers and collaborators, helping create better outcomes for our customers. We are deeply committed to Diversity, Inclusion, and Belonging, and we encourage applications from Aboriginal and Torres Strait Islander peoples, LGBTIQ+ individuals, people with disability and jobseekers of all ages and cultures. We aim to provide an inclusive, accessible workplace where everyone is welcome, safe, and celebrated. If you need any help with the application process or would like to discuss your reasonable adjustments during interviews, please reach out to our Talent team at careers@southeastwater.com.au. Keen to make an impact? To be considered for this opportunity, you must hold unrestricted working rights for the period of employment at the time of application. Successful candidates will also be required to undergo a number of pre-employment checks, including a police records check South East Water operates a 24/7 service environment. Whilst this role does not involve after-hours rostered duty, all employees may be required to provide out of hours support from time to time as required. Visit southeastwater.com.au to learn more about us and how we serve our customers.

Role Description The Senior Network Security Engineer supports our program with the U.S. Census Bureau by designing, implementing, operating, troubleshooting, and improving enterprise network security services across on-premises, hybrid-cloud, and cloud-connected environments. The role focuses on: - Firewall engineering - VPN and remote access services - RSA SecurID or equivalent MFA/token services - Content filtering - Network access control - Edge security services - Monitoring and logging integration - Vulnerability remediation - Security documentation - Policy compliance for TCO-managed systems The engineer serves as a senior technical resource for: - Secure network architecture - Operations support - Incident response coordination - Compliance support This position works closely with: - TCO leadership - Network Infrastructure - Identity and Domain Services - Cloud teams - SOC/NOC/Operations Center personnel - The Office of Information Security (OIS) - Information System Security Officers (ISSOs) - System Owners - Application teams Qualifications - 7+ years of experience in network security engineering, network infrastructure, cybersecurity infrastructure, or a closely related role. - 5+ years of hands-on experience designing, implementing, administering, and troubleshooting enterprise firewall platforms in production environments. - Hands-on experience with Cisco firewall technologies such as Cisco FTD/FMC, ASA, AnyConnect/Secure Client, or equivalent Cisco security platforms. - Hands-on experience with Palo Alto Networks technologies such as NGFW, Panorama, GlobalProtect, App-ID/User-ID, security profiles, and policy optimization. - Experience with firewall policy design, NAT, segmentation, remote access VPN, site-to-site VPN, IDS/IPS integrations, high availability, logging, and operational troubleshooting. - Working knowledge of Cloudflare or equivalent DNS, DDoS, WAF, CDN, Zero Trust, or edge security platforms. - Experience with VPN services, secure remote access, RSA SecurID or equivalent MFA/two-factor authentication services, hardware and software token support, directory integration, partner tunnels, cloud tunnels, and cloud connectivity troubleshooting. - Experience supporting MFA server operations, including software updates, patching, certificate/configuration changes, backups, log review, monitoring, vulnerability remediation, and vendor/support escalation. - Working knowledge of TCP/IP, DNS, DHCP, IPAM, BGP, routing, subnetting, TLS/certificates, VPN protocols, packet capture, NetFlow/traffic analysis, and common network diagnostic tools. - Experience supporting network security in AWS and/or Azure environments. - Experience integrating network security controls with enterprise monitoring, logging, SIEM, SOC/NOC, or incident response workflows. - Experience working within formal change management, configuration management, release management, incident management, and vulnerability remediation processes. - Ability to develop clear technical documentation, diagrams, SOPs, runbooks, implementation plans, rollback plans, status updates, and audit evidence. - Strong communication and collaboration skills, including the ability to explain technical risk, operational impact, and recommended actions to technical and non-technical stakeholders. - Ability to obtain and maintain a Public Trust / Background Investigation and complete required DOC/Census security processing, security/privacy training, and non-disclosure requirements. Requirements - Deep experience administering Cloudflare DNS, DDoS protection, WAF, CDN, Access, Gateway, Tunnel, Magic Transit, or Zero Trust services. - Experience with content filtering platforms, secure web gateways, email security gateways, URL filtering, DLP integrations, APT/malware defense integrations, and related cloud security services. - Deep experience with RSA SecurID/RSA Authentication Manager or equivalent MFA platforms, including token administration, agent/middleware upgrades, high availability, disaster recovery, reporting, and integration with VPN and directory services. - Experience with Network Access Control technologies such as Cisco ISE, 802.1X, endpoint posture, wireless/LAN access controls, and identity-aware access policies. - Experience with AWS security and networking services such as VPC, Transit Gateway, Security Groups, NACLs, Route 53, Network Firewall, Direct Connect, VPN, GuardDuty, Security Hub, IAM, and CloudWatch. - Experience with Azure security and networking services such as VNets, NSGs, Azure Firewall, Application Gateway/WAF, VPN Gateway, ExpressRoute, Private Link, Defender for Cloud, Entra ID, and Azure Monitor. - Experience supporting federal cybersecurity and compliance requirements such as NIST, FISMA, FedRAMP, ATO support, POA&M remediation, continuous monitoring, audit evidence packages, and security control validation. - Experience with automation and IaC tools such as Terraform, Ansible, Python, PowerShell, Git, APIs, CI/CD pipelines, or vendor automation frameworks. - Experience with Zero Trust architecture, SASE/SSE, ZTNA, secure segmentation, policy-as-code, microsegmentation, or identity-aware network access. - Familiarity with F5/load-balancing/application-delivery concepts for cross-team coordination; hands-on F5 administration is not required for this role. - Experience leading technical projects, coordinating across matrixed teams, mentoring junior engineers, and supporting Agile/Scrum or JIRA-based task tracking. Benefits - 401(k) - 401(k) matching - Dental insurance - Flexible schedule - Flexible spending account - Health insurance - Health savings account - Life insurance - Paid time off - Professional development assistance - Referral program - Retirement plan - Tuition reimbursement - Vision insurance

• Own and operate Trase's SOC 2 and HIPAA programs end-to-end, including scoping, control design, evidence collection, and remediation tracking. • Lead readiness and execution for additional frameworks as Trase enters new markets, including ISO 27001, FedRAMP, NIST 800-53, CMMC, and ISO 42001. • Manage the full lifecycle of internal and external audits, serving as the primary point of contact for auditors, assessors, and regulators. • Maintain Trase's enterprise risk register, conducting recurring risk assessments across people, process, and technology. • Design, document, and operationalize security policies, standards, and procedures aligned to industry frameworks and Trase's risk appetite. • Own our common control framework in Drata, monitoring and refining controls across overlapping regimes to minimize duplication and audit burden. • Shift Trase's compliance posture from reactive to proactive by implementing continuous control monitoring, automated evidence collection, and recurring control testing. • Define KRIs, KPIs, and reporting cadences that give leadership real-time visibility into the health of the security program. • Identify control gaps, perform root cause analysis, and drive remediation in partnership with control owners across the enterprise. • Enhance and operate Trase's third-party risk management program, including vendor security reviews, ongoing monitoring, and contractual security requirements. • Partner with Legal to ensure DPAs, BAAs, and security addenda meet regulatory and customer requirements. • Serve alongside other subject matter experts or leaders, as a senior representative in customer security reviews, RFPs, and prospect-facing trust conversations. • Maintain trust collateral (SOC 2 reports, security questionnaires, trust portal content) and reduce friction in customer due diligence. • Translate customer and regulator expectations into actionable program requirements. • Partner closely with peers within Trase Security and Compliance, Engineering, and across the enterprise to ensure controls are operating effectively, as designed. • Collaborate with Legal, HR, IT, and Finance on shared control ownership and program execution.