About the Role
We are seeking a seasoned professional to join our team as the Head of Security Engineering. In this pivotal senior role, you will lead the creation of a robust Security Operations capability focused around Threat Detection and Incident Response (TD-IR) for client organisations. You will oversee all technical work related to building, implementing, and deploying cutting-edge security operations technologies. Your leadership will be critical in managing the technical aspects of our Security Operations Center (SOC), ensuring the seamless operation of our cloud infrastructure for both our SOC and external client systems.
As the Head of Security Engineering, you will also serve as the team leader for all cyber-related technical roles within our organization, including security engineers, DevSecOps professionals, and security analysts. You will guide your team in designing and maintaining a secure, resilient digital environment, fostering a culture of continuous improvement and innovation. If you are a strategic thinker with a proven track record in security engineering and a passion for leading high-performing teams, we invite you to bring your expertise to our dynamic cybersecurity company, and play a role in protecting the critical infrastructure of the electricity sector.
Requirements
Experience
10 years technical experience
5 years in cybersecurity or related discipline
Solid understanding of SOC technology stacks, with deep specialisation in tools and vendors specialised in Cyber Threat Intelligence (CTI), threat & vulnerability management (TVM), EDR/XDR/SIEM for threat detection (TD), process and workflows for incident response management (IR)
Ability to be hands on tools when required, but also to manage small tech teams and contractors working on internal SOC and partner/client SOC capabilities
Expertise and/or experience in working with Critical Infrastructure sectors (e.g. energy) helpful, but not mandatory
Expertise and experience with Cloud security essential
Experience working in high compliance environments (e.g. SOC 2, ISO 27001)
Skills
Networking and segmentation within on-prem, Cloud (OT an advantage)
Experience with Kubernetes environments and Cloud technologies
Understand the configuration requirements for encrypted communications across Cloud environments, e.g. mTLS, SSL, CA etc
Manage technical personnel, both in SOC and in the field
Experience with Cloud Native Service mesh security models an advantage but not essential
About the Company
CAPA is an Australian based cyber technology team providing operational intelligence across electricity utilities, aggregators and related software supply chains.
Our mission is to provide cyber defensive capabilities to the electricity sector to support the renewables transition, adding real-time responsiveness and resilience to the power system.
Our clients are top tier utilities across Australia, including networks, retailers, generators and system operators, delivering niche capabilities in Threat Detection and Incident Response across global electricity digital supply chains.