About Us
IAG Defence & National Security (DNS) is part of IAG, a specialist advisory firm supporting complex infrastructure, Defence and national security programs across Australia.
Our DNS team works closely with Commonwealth agencies and industry partners to deliver specialist expertise into nationally significant programs. Our success depends on our ability to identify, engage and mobilise highly specialised talent quickly and effectively. IAG is recognised as Veteran Friendly Employer under the Veteran Employment Program.
The Role
We are seeking a skilled Cybersecurity Engineer to deliver technical security support to the CA33 IBMS Software Development team. The role combines vulnerability management and accreditation assessment with systems engineering for effective product lifecycle sustainment. This position is suited to an engineer who can operate across cybersecurity, systems engineering, and IT operations, ensuring secure and resilient solutions for mission-critical environments.
About You
Cybersecurity Responsibilities:
• Conduct vulnerability assessments across applications, networks, and infrastructure.
• Perform security risk assessments and maintain accreditation under frameworks such as the Australian Government Information Security Manual (ISM), Essential Eight, DISP, ISO 27001, and NIST standards.
• Prepare detailed technical reports and executive-level summaries to communicate security findings, risks, and mitigation strategies.
• Contribute to incident response and security investigations when required.
• Provide subject matter expertise on emerging cyber threats, vulnerabilities, and protective technologies. • Analyse system requirements and ensure security controls are embedded throughout the system development lifecycle (SDLC).
• Support system testing, evaluation, and acceptance activities.
• Assist in troubleshooting complex system issues and implementing engineering or operational solutions.
Essential Experience:
• Demonstrated experience in vulnerability management and security risk assessments.
• Strong background in systems engineering or systems administration.
• Familiarity with system accreditation processes for government/defence systems.
• Experience with networking, virtualisation, and cloud platforms.
• Demonstrated ability to produce high-quality technical and business-facing reports.
Highly Desirable Experience:
• Industry certifications (e.g., OSCP, CREST, CISSP, CISM, CEH, CompTIA Security+, Microsoft Certified: Windows Server, Red Hat Certified Engineer).
• Systems engineering certifications (e.g., INCOSE CSEP, ITIL, TOGAF).
• Experience working with defence/critical infrastructure systems.
• Scripting/automation experience (Python, PowerShell, Bash).
• Knowledge of DevSecOps pipelines and secure software development practices.
Core Competencies:
• Analytical and structured problem-solving skills.
• Strong written and verbal communication.
• Ability to collaborate across multidisciplinary teams.
• Cyber security expertise.
• Commitment to compliance, governance, and continuous improvement.
What we offer
With offices in Perth, Brisbane, Melbourne, Sydney, and Canberra, we’re a tight-knit team, working across some of Australia’s most critical infrastructure and Defence projects. We come from diverse backgrounds and pride ourselves on our flexible, supportive and collaborative team culture. We can offer great work, great people, great culture, great conditions, and an all-round great time, whilst you go about developing a great career in this space.
As part of IAG, you’ll be joining a team of more than 250 professionals’ working across a range of integrated workstreams in a friendly and approachable environment.
