The Living Company

Security & Compliance Engineer

The Living Company · Sydney, New South Wales, Australia

Real Estate · 501-1,000 employees

17 h ago
Mid (2-5 yrs) Full-time Australia
Log in to apply, save this posting, or score it against your profile with AI.

About the role

The role involves implementing and validating security controls across ASD Essential Eight, NIST CSF 2.0, and ISO 27001:2022. Key duties include administering EDR/MDR tools, managing cloud identity and access, and translating technical risks into business reports.

What they look for

Security Engineering Compliance Management ASD Essential Eight NIST CSF 2.0 ISO 27001:2022 EDR/MDR Administration Vulnerability Management Zero Trust Security Identity and Access Management GRC Platforms Cloud Security Endpoint Hardening

Requirements

Requires 4+ years of hands-on security engineering experience and a tertiary qualification in Cyber Security or a related field. Candidates must have demonstrable experience implementing ISO 27001 or Essential Eight controls and proficiency with GRC platforms.

Benefits

Rewards Programs Recognition Programs Lifestyle Benefits Wellbeing Focus Growth Opportunities

Full description

Sydney CBD | Full-Time | On-Site (5 Days)

WHO WE ARE Founded in 2013 as Scape Australia, leaders in student housing, we've since grown into a vertically integrated living platform known as The Living Company; managing $17B in assets across Student Living (Scape), Rent to Live – Affordable Housing (RTL Co.), and Retirement Living (Aveo); spanning site origination, investment, planning, design, development, construction, and operations.

The Living Company is reshaping the way Australians live by delivering sustainable, community-driven, and high-quality spaces across the country.

THE ROLE As the Security & Compliance Engineer, you'll be a key player in making sure our technology environment is secure, well-managed and compliant - owning the technical implementation of controls across ASD Essential Eight ML2, NIST CSF 2.0 and ISO 27001:2022, and keeping them evidenced and audit-ready in our GRC platform.

Day-to-day you will be (but not limited to):

  • Implementing and validating controls across Essential Eight, ISO 27001:2022 and NIST CSF 2.0, keeping evidence current in our GRC platform
  • Administering our EDR/MDR, application whitelisting and vulnerability management tools, and hardening endpoints in line with patching timeframes
  • Supporting identity and Zero Trust security - MFA, Conditional Access and Privileged Identity Management - across our multi-brand environment
  • Identifying control gaps and cloud misconfigurations, and driving remediation with clear owners and timelines
  • Acting as a key technical contact for internal audits and external assessments
  • Translating technical risk into clear, business-relevant reporting for leadership

WHAT YOU'LL BRING

  • 4+ years in a hands-on security engineering or security analyst role
  • Tertiary qualification in Cyber Security, Information Technology, Computer Science or a related discipline (or equivalent industry experience)
  • Demonstrable experience implementing ISO 27001 or Essential Eight controls (not just advisory)
  • Proficiency with enterprise EDR, application whitelisting and vulnerability management tooling
  • Strong cloud identity and access management experience (SSO, MFA, Conditional Access, Privileged Identity Management)
  • Experience using a GRC platform for evidence management and compliance tracking
  • ISO 27001 Lead Implementer certification, hands-on NIST CSF experience, cloud security experience across major hyperscalers, or familiarity with ITSM and project tracking tooling will be highly regarded

WHY SHOULD YOU JOIN?

  • Be part of a purpose-led organisation shaping how Australians live
  • Exposure to a large, diversified living platform with real scale and complexity
  • Strong focus on wellbeing, growth, and inclusive culture
  • Competitive rewards, recognition programs, and lifestyle benefits

INTERESTED? HERE'S HOW TO APPLY If this sounds like your next career move, we'd love to hear from you - apply now with your CV. Please note that we will be reviewing applications and contacting candidates on a rolling basis, so we encourage you to apply as early as possible.

No agencies please.

At The Living Company, we honour and welcome the rich heritage and contributions of First Nations and Indigenous peoples. Our workplace embraces diversity and strives to create an inclusive environment that respects and values your culture, traditions, and perspectives. Join us in building a harmonious and empowered community where everyone's voice is heard and celebrated.