_{23rd January, 2026}

 
Do work that makes a difference. 
The SEC is building an enterprising and dynamic team to accelerate Victoria's transition to renewables and help achieve Victoria's renewable energy target of 95% by 2035. We are working together for renewable, affordable, reliable energy for all Victorians.
 
Your role 
If you're excited by real-world systems, complex environments, and securing infrastructure that matters, this role offers the scale, challenge, and purpose to match.
 
As a Security Architect in our Technology & Data team, you'll sit at the intersection of cyber security and the energy transition—protecting the systems that are actively reshaping how energy is generated, stored, and delivered.
 
You'll play a hands-on role in reducing cyber risk and lifting SEC's cyber resilience, leading the execution of our security strategy, and embedding strong security practices into day-to-day delivery. Just as importantly, you'll help build a security-first culture, raising awareness and influencing teams across the organisation.
 
This is a delivery-focused, deeply technical role spanning both IT and Operational Technology (OT) environments. You'll work across cloud platforms and enterprise SaaS, as well as complex OT environments supporting renewable generation assets—solar farms, large-scale BESS, and future wind and hybrid assets—plus critical platforms such as DERMS and Virtual Power Plants (VPPs).
 
This role can be based in either our Melbourne CBD office or our regional office located in Morwell.
 
The role's core responsibilities include:

Security Architecture - maintain an end-to-end security architecture across SEC's IT, OT and IT/OT interfaces, setting clear guardrails and secure design patterns that enable safe delivery across cloud platforms, DERMS/VPP and generation assets.
 
Cyber Security Architecture & Operationalisation - Design and operationalise cyber security for renewable and hybrid assets, embedding practical OT security patterns that balance safety, availability and real-time control while identifying and remediating risk early.
 
Standards, Governance & Assurance - Define and enforce SEC's security standards and assurance processes, providing design sign-off, challenging vendor solutions, and translating frameworks into pragmatic, implementable controls across IT and OT.
 
Identity & Access Management - Strengthen identity and access controls across IT and OT, driving SSO, MFA and privileged access adoption while hardening third-party and remote access pathways.
 
Threat Modelling & Zero Trust - Embed threat modelling and Zero Trust principles into delivery and change processes, applying pragmatic controls and compensating measures where OT constraints exist.
 
Threat & Vulnerability Management - Lead a consistent, risk-based approach to threat and vulnerability management across IT, cloud, SaaS and OT, balancing remediation, patching constraints, and operational realities.
 
Cloud Security - Provide hands-on cloud security architecture guidance, ensuring logging, monitoring and controls support secure delivery, effective incident response, and audit requirements.
 
Collaboration & Stakeholder Management - Partner closely with technology, risk, operations, and vendors to manage security risk within appetite and ensure security outcomes are achieved in practice.
 
Who you are.
To be successful you must have:  

• Strong demonstrated experience in technology, including in security architecture or senior security engineering roles with clear architecture ownership.
• Proven security architecture capability, setting guardrails, defining reusable patterns, and influencing teams and vendors to deliver securely.
• Hands-on experience embedding threat modelling into delivery and applying Zero Trust principles pragmatically.
• Strong IAM expertise across enterprise environments, including SSO/federation, MFA, privileged access, and third-party access controls.
• Practical cloud security architecture experience, covering logging and monitoring, segmentation, encryption, secrets management, secure CI/CD, and detection/response.
• Strong working knowledge of AESCSF, translating framework requirements into implementable controls and evidence-based assurance.
• Understanding of Australian regulatory and assurance contexts, including SOCI Act obligations and audit practices.
• Relevant security certification (e.g. CISSP, SABSA, CISM), or commitment to obtain within an agreed timeframe.

Our empowered workforce 
A career with us means you'll be joining a new and vibrant 'for purpose' government-owned renewable energy company that: 

• Empowers you to influence how we accelerate Victoria's renewable energy transition and decarbonise our economy. 
• Inspires you through meaningful, challenging work in an environment that encourages leadership and an entrepreneurial spirit. 
• Supports your growth through career advancement and professional development opportunities. 
• Provides hybrid work arrangements, with around 3 days working in Melbourne or Morwell, with flexible work options to meet individual circumstances, providing greater choice and autonomy.

About us  
We have an exciting and ambitious road ahead with a focus on: 

• Investing in renewable energy and storage projects that accelerate the transition and deliver commercial returns.
• Supporting households to go all electric to reduce their emissions and energy bills.
• Building the renewable energy workforce our energy transition requires.

The organisation is partnering with industry to transform the energy sector, opening the state up for further innovation and investments in renewables. This includes an initial $1 billion towards delivering 4.5 gigawatts of power through renewable energy and storage projects - the equivalent replacement capacity of coal-fired power station Loy Yang A, which is set to close in 2035.
 
The SEC will also play an important role in helping Victorian households to reduce their energy bills and emissions by offering simple and effective solutions to help them switch to electric.
 
The energy transformation will create thousands of jobs. The SEC will play a role in attracting and training our future renewable energy workforce.
 
How to Apply
We strongly encourage applications from Aboriginal and Torres Strait Islander people. We are also deeply committed to building an inclusive workplace that embraces diversity and people with disability, people from the LGBTIQ community, and people from culturally diverse backgrounds. We strive to create a respectful and collaborative workplace culture that allows all employees to thrive.
 
For further information and to explore this opportunity further please contact sec.careers@secvictoria.com.au
 
We are a 2025 Circle Back Initiative Employer - we commit to respond to every applicant.
 
Please click the 'Apply Now' button. As part of the application process, you will need to provide a copy of your resume and/ or a cover letter (optional) addressing how your skills, knowledge and experience will be relevant to this role.
 
Other things to know.

• Applicants must be an Australian citizen, permanent resident or hold a valid work permit to be eligible to apply.
• To receive this information in an accessible format (such as large print or audio) or if you require any reasonable adjustments during the recruitment process, please reach out to careers@secvictoria.com.au

 
Data Collection
SEC engages a third-party recruitment provider to assist with applications and assessments. This may include collecting information such as your contact details, employment history, qualifications, referee details, and assessment results (including psychometric test results, which may constitute sensitive information).
Your personal information is collected and used for the purpose of assessing your suitability for employment and managing the recruitment process. By submitting your application, you consent to SEC and our recruitment provider collecting, using, and disclosing your personal and sensitive information for these purposes.
SEC and its service providers will handle your information in accordance with applicable privacy laws and SEC's Privacy Policy, available online at https://www.secvictoria.com.au/privacy-policy . You may request access to, or correction of, your personal information by contacting SEC at privacy@secvictoria.com.au.

Apply For Job