Why Tyro?At Tyro, we’re into business big time. Through our integrated payments, banking and lending solutions, we’re here to ensure nothing stands in the way of Australian business success. With over 21 years' experience under our belt, we know what it takes to build something great, which is why we combine the best people, technology, and partners to deliver simplified payments and seamless business banking to our customers. We’re proud to power more than 73,000 merchants across Australia and to work with more than 700 partners to create seamless experiences for hospitality, retail, services and health providers.It starts with You.Just like our customers, we’re obsessed with the success of our people. So, when you come onboard, we’ll give you all the support you need to do your best work. Our close to 600 Tyros are a highly collaborative team, so you’ll get to work with smart, motivated and friendly people across Tyro. We are fast paced and innovative and strive to live our values everyday – commit to greatness, stay hungry, wow the customer, be good and win together! We are big enough for you to have opportunities to have a career at Tyro and small enough that you can have a real impact. As we continue our mission to shake things up and make payments the easiest part of doing business, you’ll have the opportunity to learn new skills with hands-on experience, further your career, and help unleash the potential of our customers, one payment at a time.🎥 Step inside life at Tyro .About the roleWe are seeking a skilled and proactive Security Engineer to join our cybersecurity team. This role is pivotal in managing and securing the organization's digital infrastructure, with a focus on certificate lifecycle management, endpoint protection, vulnerability management, and compliance with industry standards and audits. The ideal candidate will have a strong foundation in networking and identity management, and be eager to grow into advanced areas such as HSM (Hardware Security Module) operations.What you'll do:SSL Certificate ManagementOversee the lifecycle of SSL/TLS certificates across the organization.Ensure timely renewal, deployment, and revocation of certificates.Maintain inventory and automate certificate management where possible.HSM Management (Learning & Implementation)Assist in the deployment and configuration of HSMs.Learn and apply best practices for key management and cryptographic operations.Endpoint SecurityAdminister and optimize endpoint protection using tools like CrowdStrike.Monitor threats and ensure endpoint compliance.Vulnerability ManagementConduct regular scans and assessments using tools like Rapid7.Collaborate with IT and development teams to remediate vulnerabilities.Track and report on vulnerability trends and risk posture.Data Loss Prevention (DLP) & Web SecurityImplement and manage DLP policies to protect sensitive data.Configure and maintain web security controls using Cloudflare or similar platforms.Networking & Infrastructure SecurityApply solid networking knowledge to secure and troubleshoot infrastructure.Support firewall, VPN, and segmentation strategiesIdentity Lifecycle & Access ManagementManage identity provisioning and de-provisioning using tools like SailPoint.Ensure role-based access control and least privilege principles are enforced.Audit & CompliancePrepare and support regular audits including ISO 27001, CPS 320, and Australian Payments Network requirements.Maintain documentation and evidence for compliance.Collaborate with internal and external auditors to address findings.What you'll bring:3+ years in a cybersecurity or infrastructure security role.Hands-on experience with SSL certificate management and endpoint protection tools.Familiarity with vulnerability management platforms (e.g., Rapid7).Working knowledge of DLP and web security technologies.Strong understanding of networking protocols and security principles.Experience with identity and access management platforms (e.g., SailPoint).Exposure to compliance frameworks and audit processes.Excellent analytical, documentation, and communication skills.Desirable Qualifications:Certifications such as CompTIA Security+, (ISC)² SSCP, Microsoft SC-200, or equivalent.Experience with HSMs or cryptographic key management.Knowledge of scripting or automation (e.g., PowerShell, Python).Familiarity with cloud security (AWS, Azure).What’s in it for you?We’ve worked hard to create an environment that’s big on diversity, inclusion, and flexibility, and one that suits the changing needs of team members across Australia. Here are just some of the things Tyros tell us they love about working here.You’ll also receive:A mix of in-office and remote workingLearning and career development opportunities16 weeks paid primary carers leave12 weeks paid secondary carers leaveAnnual team-based volunteer dayBirthday LeavePower Up Day (Additional day of leave)Weekly team social events, snacks, craft beer and wine, ping pong and video gamesTaco TuesdaysMental health and wellness initiativesNovated leasingTyro is committed to a diverse, inclusive workplace where everyone thrives. We welcome applicants of all backgrounds and are an equal opportunity employer. If you need accommodations or adjustments at any stage of the recruitment process, simply inform our Talent team during your conversation with them.Still with us?If you’ve got this far, then you might just be a great fit for us. Don’t tick all the boxes above? That’s ok, apply anyway and our Talent team will review your profile - you might be a fit for future roles.#LI-Hybrid
