View All Jobs 124940

Security Platform Engineer

Own end-to-end security controls across Intune, Entra ID, Zscaler, and Azure in production
Sydney
Senior
8 hours agoBe an early applicant
Cognizant

Cognizant

Provides global IT consulting, digital transformation, and business process services to help enterprises modernize technology and improve operations.
35 Similar Jobs at Cognizant

Security Engineer

As a Security Engineer, you will make an impact by serving as the named, accountable owner of all security and platform controls that protect a government support service's production environment. You will be a valued member of the Technology & Security team and work collaboratively with the CISO, infrastructure engineers, compliance stakeholders, and third-party audit teams to ensure the organisation's security posture remains robust, auditable, and continuously improving.

In this role, you will:

  • Own end-to-end security controls across endpoint (Intune), identity (Entra ID), network access (Zscaler), and cloud platform (Azure) as a single, integrated security boundary protecting PII-bearing production systems
  • Design, operate, and continuously improve Conditional Access policies, device compliance rules, and least-privilege access controls in alignment with ISM requirements and IRAP expectations
  • Systematically identify, track, and close penetration test findings and audit remediation items with clear, reproducible evidence of control effectiveness
  • Prevent security control drift by proactively monitoring all four domains and acting as the escalation point for security-critical platform incidents
  • Maintain audit-ready documentation of all security decisions, configuration changes, and control evidence to support ongoing compliance obligations

What you need to have to be considered:

  • Demonstrated hands-on ownership across all four domains — Microsoft Intune, Entra ID, Zscaler (ZIA & ZPA), and Azure — including design, operation, and remediation in a production environment handling sensitive or regulated data
  • Proven experience designing and maintaining Conditional Access policies, device compliance frameworks, and MFA/authentication strength controls that integrate device posture, identity signals, and network access decisions
  • Practical experience closing formal penetration test findings in a systematic, documented manner with auditable evidence of remediation
  • Working knowledge of the Australian Government Information Security Manual (ISM) and IRAP assessment processes, including alignment of platform configurations to ISM controls
  • Strong documentation discipline — you write up configurations, decisions, and remediations in a way that is reproducible and audit-ready without prompting

These will help you stand out:

  • ASD-certified IRAP Assessor status or direct experience working within a formally IRAP-assessed environment
  • Zscaler certifications (ZCCA-IA or ZCCA-PA) and/or Microsoft certifications across SC-300, MD-102, or AZ-500
  • Prior experience in a named control-owner or security-accountable role within a government-adjacent, health, or regulated community services environment
  • Familiarity with Windows Defender Application Control (WDAC) policy authoring and enterprise Windows Autopilot deployment at scale
  • Experience presenting control evidence and security posture updates to non-technical compliance or audit stakeholders

What we offer:

  • The chance to work with impact. Here, you're empowered to bring your biggest thinking to help our company and clients improve everyday life.
  • Ownership over your career. Stay at the top of your game through our award-winning learning and development ecosystem. And when your ambitions change or we offer new opportunities, we help you pivot by providing reskilling, on-the-job learning and guidance to find new roles that might be a better fit.
  • The opportunity to thrive on a high caliber team with heart. We celebrate each other's experiences and perspectives and promote a sense of belonging through our affinity groups and diversity and inclusion initiatives.
  • A comprehensive total rewards package, including a competitive salary and a pension plan with matching contributions.
  • Flexible health and financial benefits to support you and your eligible dependents—from day one.
  • True work-life balance. Be at your best through paid time off, flexible work arrangements, volunteering opportunities, social events, and so much more.

Cognizant (Nasdaq: CTSH) is an AI Builder and technology services provider, building the bridge between AI investment and enterprise value by building full-stack AI solutions for our clients. Our deep industry, process and engineering expertise enables us to build an organization's unique context into technology systems that amplify human potential, realize tangible returns and keep global enterprises ahead in a fast-changing world.

Cognizant is an equal opportunity employer. Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, provincial or local laws.

If you have a disability that requires reasonable accommodation to search for a job opening or submit an application, please email CareersNA2@cognizant.com with your request and contact information.

Language requirements vary depending on roles, but we ask that all candidates have basic English proficiency for company-wide communications purposes. For roles based in Quebec, professional English proficiency is required, as you'll deliver services to and collaborate with stakeholders outside the province who may not speak French.

+ Show Original Job Post
Suggest a correction
























Security Platform Engineer
Sydney
Engineering
Apply to job
About Cognizant
Provides global IT consulting, digital transformation, and business process services to help enterprises modernize technology and improve operations.