Architect Public Key Infrastructure role at BMW Group focusing on IT Security with a Zero Trust initiative. Collaborating on secure IT systems and advanced PKI solutions.
About the role
- Staff Infrastructure Security Engineer designing secure infrastructure for medical technology at healthtech startup Heidi. Focused on building scalable security guardrails and improving data protection.
Responsibilities
- Design and implement identity, network, and platform controls that reduce risk while keeping delivery fast
- Build scalable security guardrails for infrastructure changes through infrastructure-as-code and delivery pipelines (policy checks, safe defaults, automated verification)
- Improve service-to-service security patterns (workload identity, service authentication, secrets usage) in partnership with platform and application teams
- Strengthen data and storage controls (encryption, key management, backup and recovery security, database hardening)
- Reduce infrastructure attack vectors through hardening, configuration baselines, and continuous posture assessment
- Improve supply chain integrity for infrastructure artefacts (build provenance, dependency and image integrity, SBOMs)
- Contribute to the wider security program by turning requirements into platform capabilities and paved paths that teams can adopt with minimal friction
Requirements
- Senior/staff-level capability, expressed as autonomy, depth, and ability to scale impact.
- Comfortable owning ambiguous problems end-to-end, from threat modelling to design to implementation to rollout
- Strong domain understanding of cloud, identity, and networking fundamentals and how they fail in practice
- Able to build durable systems: automated controls, paved paths, and reliable feedback loops
- Works independently with stakeholders, aligns on trade-offs, and drives decisions without needing constant direction
- Raises the bar for engineering teams by teaching patterns, writing clear docs, and improving defaults.
Benefits
- Flexible hybrid working environment, with 3 days in the office.
- A generous personal development budget of $500 per annum
- Learn from some of the best engineers and creatives, joining a diverse team
- Become an owner, with shares (equity) in the company, if Heidi wins, we all win
- The rare chance to create a global impact as you immerse yourself in one of Australia’s leading healthtech startups
- If you have an impact quickly, the opportunity to fast track your startup career!
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Development Engineer in E - Mobility focusing on Functional Safety at BMW Group. Involves handling and evaluating safety concepts and ensuring compliance in electric drive components.
Senior Web Security Researcher responsible for threat detection and security research. Collaborating with security and data researchers to combat cybercrime and enhance detection capabilities.
Stagiaire assistant communication chez Liebherr - Aerospace pour le déploiement du système de management de la sécurité aérienne. Activités variées en communication et mise à jour de formation.
Cybersecurity intern supporting Desjardins Group with risk analysis and security practices. Collaborating on projects to ensure compliance with security measures while developing practical governance strategies.
Product Marketing Manager for Upwind Security, creating compelling narratives in cloud security. Collaborating with various teams to translate complex ideas into clear technical content.
CYE seeks Junior Cybersecurity Architect focusing on governance, risk analysis, and security processes. Work with security leaders, engineering teams, and customers to develop mitigation plans.
Senior leader responsible for designing and executing a corporate security program while collaborating with cybersecurity, IT and risk teams at LPL Financial.
Principal Security Engineer leading cyber security efforts and providing technical direction at Intact. Focusing on risk mitigation and mentoring security teams in a hybrid environment.
Lead Information Security Engineer managing inbound web application security to protect enterprise web assets at Wells Fargo. Design and implement security measures against application - layer attacks.