ASO8 Senior Technical Security Specialist

Join SAPOL on a two-year fixed term vacancy as a Senior Technical Security Specialist

South Australia Police (SAPOL) provides a diverse range of services to the community. These services are aimed at producing a safe and peaceful environment by the minimisation of crime and disorder. It is a large complex organisation which, because of the nature of its operations, is constantly subject to public scrutiny and accountability. It provides services to a range of different locations (over 100) spread across the State on a 24 hour a day basis.

The IS&T Service is responsible for the provision of IT, cyber security and communications services and is therefore vital to the achievement of SAPOL’s core objectives. In consultation with its customers, IS&T plans, delivers, secures and supports new and existing technology services.

Working as part of the IS&T Security Branch, the Senior Technical Security Specialist is responsible for ensuring that new digital capabilities are delivered in accordance with SAPOL’s risk appetite and security architecture guidelines, and that existing solutions maintain an appropriate security posture.

The role will report to the Manager, Security Architecture & Engineering and also support the development of security architecture frameworks and best practices. The role will work closely with major projects and programs, engaging program and IS&T stakeholders to ensure digital solutions delivered by the program are in line with cyber security architecture and engineering frameworks and standards.

• The incumbent must hold a current Australian work eligibility status and will be subject to a criminal history check.
• The incumbent may be assigned to other duties at this remuneration level or equivalent.
• Some out of hours work and intra/interstate travel may be required.
• The incumbent is required to participate in SAPOL’s iEngage program.

Minimum of 5 years’ experience in security, with a focus on architecture or engineering and a minimum of 2 years in at least one of the following domains:

• Proven technical expertise in the design, implementation, and maintenance of secure solutions across diverse environments, including on-premise, cloud, and hybrid architectures.
• Solid knowledge of cloud security principles and technologies, particularly in platforms such as Microsoft Azure, AWS, or M365, including identity and access management, data protection, and secure configuration.
• Demonstrated experience working within security architecture and engineering functions, contributing to the development of secure systems and helping resolve complex security design challenges.
• Experience integrating security controls and risk management practices into IT projects, technology programs, and transformation initiatives, preferably within large or complex organisations.
• Strong working knowledge of cyber security frameworks and standards, including but not limited to ISM, SA CSF, NIST CSF, TOGAF, MITRE ATT&CK, OWASP, and ISO 27001, with the ability to apply these in real-world enterprise environments.
• Sound understanding of enterprise architecture governance, including the development and application of security reference architectures, patterns, and risk-based approaches to solution design.
• Ability to perform and support security risk assessments and threat modelling activities, providing actionable insights to architecture, engineering, and delivery teams.
• Excellent communication skills, with the ability to produce high-quality technical documentation and communicate complex security issues to both technical and non-technical stakeholders.

• Experience working in a managed service provider or blended team environment, collaborating with internal and external service providers.
• Exposure to continuous improvement of ICT security services, including the use of methodologies like ITIL, Lean, or DevSecOps for process optimisation.
• Hands-on experience with security engineering tools and platforms, such as SIEM, SOAR, vulnerability management, endpoint detection and response (EDR), or cloud-native security tooling.

South Australia Police is dedicated to strengthening trust and collaboration with First Nations communities in South Australia as we shape a culturally responsive and inclusive workplace for First Nations employees.

Our vision is to create safer communities by strengthening the bonds of mutual respect, understanding, and partnerships between police and First Nations peoples. By deepening our appreciation and understanding of First Nations cultures and acknowledging the past, we are committed to focusing on the present and moving forward together into the future.

To strengthen our workforce, South Australia Police encourage applications from First Nations peoples.

South Australia Police is an equal opportunity employer committed to providing a working environment that embraces and values diversity and inclusion.

People with disability are strongly encouraged to apply. The South Australian public sector supports flexible ways of working including part-time working arrangements wherever reasonably possible. The sector is diverse and desires to increase in diversity and to create opportunities for more South Australians.

We are committed to making reasonable adjustments to provide a positive, barrier-free recruitment process and supportive workplace. If you have any support or access requirements, we encourage you to advise us at the time of application.