Principal Network Security Engineer

• Computer System Officer - Level 6

• Ongoing

   

• Parramatta

   

About us

The NSW Police Force (NSWPF) is one of the largest police forces in the western world, with more than 20,000 employees, including more than 4,000 administrative employees who support the sworn officers that provide a range of law and order services 24 hours a day, seven days a week to the socially, geographically and culturally diverse community of NSW.

About the role

We have an opportunity for a Principal Network Security Engineer to be part of our Network and Security Platform Services, Technology and Communication Services Command. The role provides strategic leadership and expert guidance in the design and delivery of secure, resilient technology network solutions that safeguard critical policing systems and sensitive information, ensuring network security is embedded into enterprise architecture and digital transformation initiatives, enabling NSWPF to uphold operational integrity, protect public trust, and deliver secure, modern policing services in a dynamic threat landscape.

The Network and Security Platform Services Directorate manage and maintain the overarching connectivity and security requirements for over 550 NSWP sites.

They are responsible for the connection of users and devices to NSWPF systems, the delivery of data across the entirety of the NSWPF Network, the network management of boundaries, security and dataflow control, NSWPF Telecommunication Services, and the control interoperability and connectivity between NSWPF applications, external services and devices.

The Network Security Platform has an opportunity for a Principal Network Security Engineer to join their team.

The Principal Network Security Engineer is responsible for;

• Design and enforce secure data-in-transit controls (TLS, IPsec, VPNs) across enterprise networks.
• Maintain secure network protocols and firewall policies, eliminating weak ciphers and legacy standards.
• Configure and manage Cisco and Check Point firewalls to enforce segmentation, secure communication, and threat prevention
• Maintain secure network protocols and firewall policies, eliminating weak ciphers and legacy standards
• Monitor and respond to transport-layer threats (e.g., MITM, TLS downgrade attacks)
• Integrate firewall and network controls with Zero Trust and identity based access models
• Support incident response and troubleshooting for connectivity, encryption, and firewall-related issue
• Lead the design, implementation, and governance of enterprise PAM, HSM, KMS, and cloud security controls, aligned to Zero Trust and least-privilege principles
• Manage privileged access lifecycle (credential vaulting, session monitoring, just-in-time access) across on-prem and cloud environments.
• Own cryptographic key management, including secure key generation, storage (HSM/KMS), rotation, revocation, and destruction.
• Define and enforce enterprise encryption standards for data at rest, in transit, and in use across networks, applications, and cloud platforms.
• Provide architecture leadership and design assurance for secure network and cloud solutions, integrating with identity, PKI, and native cloud security services.
• Ensure compliance with security frameworks and regulatory requirements (ISO 27001, NIST, ASD Essential Eight), supporting audits and risk management.
• Provide operational ownership of security platforms ensuring high availability, resilience, and performance.

Align with ITIL processes, including:

Incident Management: Lead response and resolution of security incidents

Problem Management: Perform root cause analysis and implement long-term fixes

Change Management: Govern and approve secure changes to

Service Request Management: Oversee controlled provisioning of transport security services

• Maintain documentation, operational runbooks, standards, and procedures for security platforms.

   

• Support 24x7 critical incident response and ensure service continuity and disaster recovery readiness.

IMPORTANT INFORMATION:

• You will be asked to complete a Baseline Vetting Clearance, please note you may be required to upgrade your clearance to NV1 in the future.

   

View the relevant role description for more information on this role (e.g. essential requirements, key accountabilities, key challenges and capabilities required for the role)

What we can offer you

At NSWPF our people have access to a range of benefits that help balance life at work and at home. Some of the benefits available when you join the NSWPF include:

• competitive salary;
• flexible work options;
• opportunity to purchase leave;
• annual leave loading;
• corporate wellbeing programs including seminars and the Fitness Passport;
• free annual influenza vaccination;
• salary packaging options via superannuation contributions or a novated vehicle lease;
• convenient location for public transport and to shops etc; and 
• in-house gym facilities. 

How to Apply

Applications can only be submitted electronically via the I Work for NSW website.

To be considered for this role, attach a cover letter (2 pages maximum) and an up-to-date resume that clearly details your skills & experience as relevant to this role.

Please do not attach copies of qualifications, certificates or documentation (other than what has been requested) - you can bring these if called for interview.

Please address the target questions (500 words per question) in the text boxes provided in the online application or attach as a separate document.

Target Question 1:

Provide an example of how you responded to a suspected cryptographic key compromise within an HSM environment, including your immediate response and subsequent remediation steps.

Target Question 2:

Describe a situation where you provided technical leadership or mentorship to uplift security capability. What actions did you take, what was the outcome, and what would you do differently in future?

If you require any further information about this opportunity, please contact Rebecca Grimas – 0488 273 541.

To be eligible to apply for this role, you must meet one of the following statuses:

• an Australian Citizen;
• a permanent resident of Australia; or
• a New Zealand citizen.

Prior to commencement, the successful candidate will be required to undergo a rigorous National Police (criminal history) Check and obtain and maintain a Security Clearance as determined by the NSW Police Force.

Our commitment to Diversity:

At the NSW Police Force, we are proud to be an employer of a diverse range of people. We are committed to reflecting the diverse community we serve and creating an inclusive and respectful workplace for all employees where differences are embraced, contributions are valued, and everyone has a sense of connection and belonging.

We welcome applications from individuals with diverse skills, experiences, and backgrounds including Aboriginal and Torres Strait Islander peoples, LGBTQIA+ individuals, people with disability, neurodiverse individuals, those from culturally and linguistically diverse communities, and people of all ages.

We understand that the recruitment journey may present unique challenges. If you:

• Identify as Aboriginal or Torres Strait Islander and would like support with your application, please contact the NSWPF Aboriginal Employment & Engagement team at [email protected]
• Identify as a person with disability and require further information on the role or adjustments to participate in the recruitment process, please contact the Inclusion & Diversity team at [email protected]

• Are transgender or gender diverse and want to learn more about our support options, please contact the Inclusion & Diversity team at [email protected]

   

This recruitment may be used to create a Talent Pool for similar future roles (ongoing or temporary) that may arise over the next 18 months.

For more information on applying for roles with the NSW Police Force click here

Thank you for your interest in this role. We look forward to receiving your application.