Senior Cyber Security Engineer

Eightcap is a dynamic online trading provider focused on delivering great trading tools and pro trading insight to enable smarter trading. With a commitment to excellence and a passion for delivering trading technology direct to clients and via our network of strategic partners, we are looking for an experienced Integration Engineer to join our team to deliver growth across global markets.

The company is headquartered in Melbourne, Australia and has offices in the UK, Cyprus, Bulgaria, Guatemala, Philippines, and Bahamas.

The Engineering team is essential in ensuring seamless system interoperability and enhancing operational efficiency across the organisation. The Engineering team collaborates to provide the successful candidate with a great knowledge base of the company and the broader financial services industry.

Key Responsibilities

Security Program Delivery

• Drive the execution of security initiatives that reduce risk, harden environments, and uplift foundational controls.
• Translate strategic objectives into clearly scoped, technically grounded engineering deliverables.
• Own and drive projects end-to-end, from design and requirements through to delivery and handover.
  
  

Enterprise Security Engineering

• Engineer and maintain secure configurations across corporate identity platforms (Azure AD, G-Suite), productivity and collaboration tools (M365, Slack), and endpoint fleets (Windows, macOS).
• Deploy and manage secure access solutions in line with Zero Trust principles, including endpoint-based policy enforcement, traffic inspection, and posture-aware access controls using a SASE platform.
• Strengthen detection and response capabilities by integrating enterprise systems with SIEM and EDR tooling.
• Improve security posture of staff-facing applications and systems through secure configuration, access management, and automation.
• Harden exposed infrastructure components in collaboration with owners, such as VPNs, WAFs, DNS, and public cloud services, ensuring baseline controls are in place and effective.
  
  

Customer-Facing Security Engineering

• Strengthen the security of customer-facing platforms and services by embedding robust authentication, authorisation, and fraud prevention controls.
• Work with engineering teams to design and implement secure patterns for user onboarding, multi-factor authentication (MFA), and session management.
• Contribute to the secure design of API gateways, client portals, and high-traffic public endpoints, ensuring appropriate rate-limiting, logging, and input validation are in place.
• Support secure-by-design development through threat modelling, architectural input, and control implementation during early stages of platform development.
  
  

Cross-Functional Engagement

• Build trusted working relationships across engineering, infrastructure, DevOps, and IT teams to embed security into systems, pipelines, and day-to-day operations.
• Partner with delivery teams early in the development lifecycle to define clear, risk-informed security requirements for new systems and changes.
• Engage constructively with business and product stakeholders to clarify security trade-offs and support secure decision-making without slowing delivery.
• Act as a visible and approachable point of contact for security engineering matters across the company.
  
  

Incident Response Support

• Assist in escalated security incidents by providing technical analysis, forensic insight, and support with containment and remediation.
• Ensure engineering-owned systems and platforms provide adequate telemetry and access controls to support effective detection and response.
• Partner with the Security Operations function to close control gaps identified through post-incident reviews.
  
  

About You

• Proven experience delivering security engineering initiatives across cloud environments, core systems, and end-user infrastructure.
• Experience implementing a SASE platform (e.g. Netskope, Zscaler), including endpoint posture controls and secure access policies.
• Strong hands-on capability with enterprise identity providers (e.g. Azure AD, Google Workspace), endpoint management platforms, and infrastructure-as-a-service environments (e.g. AWS, Azure).
• Familiarity with Microsoft Sentinel, Defender for Endpoint, and the broader Microsoft security stack.
• Strong understanding of authentication, access control, secure configuration, and event logging across enterprise systems.
• Practical experience improving system hardening, detection coverage, or security automation at scale.
• Ability to work cross-functionally with engineering, DevOps, and IT teams to implement controls and influence secure design.
• Clear communication skills with the ability to explain security implications to both technical and non-technical stakeholders.
• Demonstrated experience supporting or delivering a Microsoft 365 migration, including identity integration and endpoint uplift. (desired)
• Exposure to ISO 27001 or similar frameworks, particularly around technical control implementation. (desired)
• Relevant tertiary qualifications or industry certifications (e.g. GCIA, GCED, GSEC, AZ-500, SC-200). (desired)
  
  

Why Eightcap?

• Ongoing investment in your career development
• Wellness and lifestyle perks like monthly corporate massages
• Parental leave
• Staff referral bonus program
• Employee-purchased leave
• Perkbox reward and recognition
• Study assistance
• Annual flu vaccinations
• Complimentary fruit and snacks
• Multicultural environment
• A dynamic and collaborative team culture
• Great CBD location with easy access to public transport
• Regular social activities
  
  

Are you interested in this opportunity but don’t meet every requirement? Eightcap endeavours to create an inclusive and diverse workforce by offering an opportunity for the right people and so we encourage you to apply.

We respectfully ask that no recruiters contact anyone at Eightcap regarding this role