About the Role

The purpose of the role is to assist the Security Advisory Manager with  implementation of security frameworks and all enterprise security artefacts and standards. The incumbent will also work with other staff and third parites to provide operational architecture support when needed.

This role contributes to the overall success of shaping future use of technology including consumption of cloud services ensuring the technologies are deployed securely. This role will ensure that certain solutions designed and implemented by the department and the Victorian Government have in place appropriate security controls and configuration.

Embedded into project and operational teams, the Security Architect will be an expert and pragmatic. The Security Architect will work with other subject matter experts to assess, design and document appropriate security designs and controls. This role works closely across multi-disciplinary ICT functions and collaborates with external agencies including the Department of Premier and Cabinet and Digital Victoria.

• This is a VPS5 role, Fixed Term until 30 June 2027
  
  

Attributes

The successful candidate will bring experience in cyber security architecture across complex ICT environments, with the ability to assess risks, apply technical solutions, and communicate security concepts to a range of stakeholders. Key capabilities include problem-solving, scripting, stakeholder engagement, and a commitment to continuous improvement in security practices.

Qualifications and Experience

Mandatory:

• Experience in working in an architecture function in a complex environment, including experience with contemporary business technologies and architectural frameworks, knowledge of industry standard security architecture methodologies, tools and techniques
• Experience in architecting solutions using cloud computing models and solutions, including exposure working with AWS and Azure cloud platform security services
• Experience in managing third parties inclusive in writing Statement of Works for Security related requests.
• Knowledge of developing, guiding and maintaining System Security Plans
• Knowledge in the selection and implementation of relevant security controls and frameworks utilising PSPF, ISM, ISO 27002, CIS.
• Thorough understanding of privacy, valuation of information, and protective differences required at varying levels of classification
• Proven knowledge designing and implementing treatments that incorporate the Victorian Protective Data Security Framework and Standards (VPDSF/S) or ISM in line with data classifications.
• Demonstrated experience architecting for typical cyber threats impacting technology platforms across network, cloud services, databases, website platforms, and endpoint devices.
• Thorough experience conducting technology threat assessments to identify cyber risks, mapping pragmatic treatments to lower risk to within risk appetite.
• Bachelor's degree, or above in Cyber Security or related field
  
  

Desirable:

• Certification in relevant security body of knowledge
• Architecture or Engineeering certifications in cloud services covering Azure, GCP and AWS
• Certification in relevant architecture body of knowledge including SABSA, TOGAF, etc
• Certifications in project management, risk management

How to apply

To be considered for this position, applicants are encouraged to submit a resume and cover letter (no longer than 2 pages) addressing the skills and attributes from the role statement and the capabilities from the position description.

For more details regarding this position please see attached role statements.

About the Department

The role of the Department of Education is to support Victorians to build prosperous, socially engaged, happy and healthy lives. It does this by supporting lifelong learning and healthy development, strengthening families and helping to equip people with the skills and knowledge for a 21st century economy and society.

About the Division

The Information Management and Technology Division (IMTD) provide secure, reliable and integrated technology platforms, systems and services that enable high-quality education for every child and young person in Victoria.
IMTD is responsible for supporting one of the largest technology environments in Victoria, servicing over 1,500 government schools, 50,000 teachers, and 650,000 students. The division drives digital transformation through agile delivery practices, enterprise cloud platforms, and a strong focus on user experience, security, and innovation.

The Information Security Services Branch plays a critical role in safeguarding the Department's digital environments. With a significant rise in cyber risks, our priority is to ensure the safety and privacy of staff and students through best-practice security policies, tools, and risk assessments.

Further Information

For more details regarding this position please see attached position description for the capabilities to address in application.

The department values diversity and inclusion in all forms - gender, religion, ethnicity, LGBTIQ+, disability and neurodiversity. Aboriginal and Torres Strait Islander candidates are strongly encouraged to apply. For more information about our work, working for the Department, diversity and inclusion, and our employment conditions visit the Department website and our Diversity and Inclusion page.

 Applicants requiring adjustments can contact the nominated contact person.

Information about the Department of Education's operations and employment conditions can be located at www.education.vic.gov.au.

For further information pertaining to the role, please contact David Dessardo - Manager Security Advisory via or david.dessardo@education.vic.gov.au.

Preferred applicants may be required to complete a police check and may be subject to other pre-employment checks. Information provided to the Department of Education will be treated in the strictest confidence.

Please let us know via phone or email if you require any adjustments to ensure your full participation in the recruitment process or if you need the ad or any attachments in an accessible format (e.g. large print) due to any viewing difficulties or other accessibility requirements.

Applications close 11:59pm on Wednesday, 10 December 2025