Senior Enterprise Security Engineer

CoStar Group

Pyrmont

17 Mar 2026

Pyrmont

17 Mar 2026

Apply

Senior Enterprise Security Engineer

Senior Cybersecurity Engineer needed to deploy and operate Microsoft Defender suite for enterprise security. Requires 5+ years engineering experience with 3+ years in security roles, expertise in Microsoft Defender, vulnerability management, and network security. Based in Pyrmont, Australia.

Apply

On-site

Full-time

Senior

Microsoft Defender

Endpoint Defender

Salary

Not specified

Work Location

Pyrmont, New South Wales, Australia, AU

Work Model

On-site

Experience Required

5 years

Employment Type

Full-time

Experience Level

Senior Cybersecurity Engineer with 5+ years total experience including 3+ years in Security roles

Core Qualifications

Technical (Must-have)

Microsoft DefenderEndpoint DefenderXDRDefender for IdentityApplication ControlFirewallSmartScreenAntivirusvulnerability managementAWS Network Firewall

Soft Skills

communicationcollaborationproblem solvingadaptability

Tools (Must-have)

Microsoft Defender for EndpointWizDefender Vulnerability ManagementRapid7 InsightVMAWS Transit GatewayPalo Alto FirewallsDefender for Cloud AppsZscaler SASEZscaler Internet AccessZscaler Private Access

Preferred Qualifications

Technical (Nice-to-have)

TerraformPerlPythonPowerShellAzure DevOpsAgile Development

Tools (Nice-to-have)

NessusRapid7

Key Responsibilities

•Design, implement, and manage Microsoft Defender solutions to protect against various cyber threats.
•Ensure proper configuration and deployment of Microsoft Defender for endpoint protection.
•Collaborate with cross-functional teams to integrate Microsoft Defender into the overall security framework.
•Configure and manage the Microsoft Defender Firewall to protect network traffic and prevent unauthorized access.
•Utilize SmartScreen to enhance protection against phishing and malicious websites.
•Develop and enforce USB restriction policies to mitigate the risks associated with unauthorized external devices.
•Implement and manage controls to monitor and regulate USB device usage across the organization.
•Deploy and maintain Application Control solutions to enhance application security.
•Define and enforce application control policies to prevent unauthorized applications and code execution.
•Participate in security incident response activities, leveraging Microsoft Defender capabilities to detect, investigate, and remediate security incidents.
•Collaborate with incident response teams to enhance the organization's overall security posture.
•Collaborate with cross-functional teams to ensure timely vulnerability identification and remediation.
•Conduct regular vulnerability assessments using industry-leading tools and techniques, and analyze the results to identify critical vulnerabilities and potential risks.
•Stay up-to-date with the latest security vulnerabilities, emerging threats, and industry best practices, and assess their potential impact on our systems and networks.
•Provide recommendations for security controls and measures to prevent or mitigate vulnerabilities based on industry best practices and regulatory requirements.
•Provide engineering expertise to ensure changes to the enterprise network are designed and implemented in a secure manner.
•Evaluate firewall change requests – both on-premise and in the cloud.
•Design, enforce, and audit policy for various blades of a Next Generation Firewall, load balancers, routers, switches, Wi-Fi controllers, etc.
•Follow, develop, and improve network and security configuration policies, standards, and procedures.
•Assist with the move towards a zero-trust methodology.
•Operate network filtering tools such as ZScaler Internet Access and Microsoft Defender for Cloud Apps.
•Administer email security platforms to filter malicious mail.
•Create comprehensive documentation for implemented security solutions, including configuration details, best practices, and troubleshooting guides.

CybersecurityEnterprise SecurityMicrosoft DefenderVulnerability ManagementNetwork SecurityCloud SecurityAWSReal EstateIT ServicesSenior

Core Qualifications

Technical (Must-have)

Microsoft DefenderEndpoint DefenderXDRDefender for IdentityApplication ControlFirewallSmartScreenAntivirusvulnerability managementAWS Network Firewall

Soft Skills

communicationcollaborationproblem solvingadaptability

Tools (Must-have)

Key Responsibilities

•Design, implement, and manage Microsoft Defender solutions to protect against various cyber threats.

•Ensure proper configuration and deployment of Microsoft Defender for endpoint protection.

•Collaborate with cross-functional teams to integrate Microsoft Defender into the overall security framework.

•Configure and manage the Microsoft Defender Firewall to protect network traffic and prevent unauthorized access.

•Utilize SmartScreen to enhance protection against phishing and malicious websites.

•Develop and enforce USB restriction policies to mitigate the risks associated with unauthorized external devices.

•Implement and manage controls to monitor and regulate USB device usage across the organization.

•Deploy and maintain Application Control solutions to enhance application security.

•Define and enforce application control policies to prevent unauthorized applications and code execution.

•Participate in security incident response activities, leveraging Microsoft Defender capabilities to detect, investigate, and remediate security incidents.

•Collaborate with incident response teams to enhance the organization's overall security posture.

•Collaborate with cross-functional teams to ensure timely vulnerability identification and remediation.

•Conduct regular vulnerability assessments using industry-leading tools and techniques, and analyze the results to identify critical vulnerabilities and potential risks.

•Stay up-to-date with the latest security vulnerabilities, emerging threats, and industry best practices, and assess their potential impact on our systems and networks.

•Provide recommendations for security controls and measures to prevent or mitigate vulnerabilities based on industry best practices and regulatory requirements.

•Provide engineering expertise to ensure changes to the enterprise network are designed and implemented in a secure manner.

•Evaluate firewall change requests – both on-premise and in the cloud.

•Design, enforce, and audit policy for various blades of a Next Generation Firewall, load balancers, routers, switches, Wi-Fi controllers, etc.

•Follow, develop, and improve network and security configuration policies, standards, and procedures.

•Assist with the move towards a zero-trust methodology.

•Operate network filtering tools such as ZScaler Internet Access and Microsoft Defender for Cloud Apps.

•Administer email security platforms to filter malicious mail.

•Create comprehensive documentation for implemented security solutions, including configuration details, best practices, and troubleshooting guides.