Join Telstra’s Endpoint & Identity Security team as a Senior Security Engineer – Digital Certificates (PKI), where you’ll play a pivotal role in shaping security controls within solution designs and delivering a secure, resilient network experience for our customers.

In this hands-on role, you’ll lead the design, deployment, and support of digital certificate solutions across Telstra’s environments. You’ll manage the end-to-end lifecycle of certificate services — from PKI design and automation to governance and compliance. This position is ideal for an experienced cyber security engineer with deep understanding of certificate services, automation, APIs, and cryptographic best practices.

By working across Telstra’s diverse environments, you'll help drive crypto agility, improve risk and compliance processes, and collaborate with teams to embed secure certificate solutions into enterprise designs - uplifting security posture and enhancing operational resilience.

What You’ll Do

Lead implementation and support of enterprise-wide certificate management platforms.
Embed security controls and crypto governance into infrastructure and network designs.
Work with and support identity-related systems such as AD CS, AppViewX, EJBCA, and Thales HSM to deliver secure and scalable PKI services.
Develop security standards, remediation strategies, and risk assessments aligned with compliance frameworks.
Build automation and scripting solutions to streamline certificate lifecycle management.
Mentor and collaborate with engineers to uplift PKI and certificate practices across the organisation.
Participate in the on-call support roster for critical incidents, ensuring timely response and coverage during escalations and high-priority events.
What You Bring

Strong experience with PKI and digital certificate management
Knowledge in PKI & Identity-related systems such as Active Directory Certificate Services (ADCS), AppViewX, EJBCA, Thales HSM.
Strong technical background across Windows, Linux, Active Directory, VMware, Kubernetes, F5, firewall and load balancers and networking environments.
Understanding of certificate-based authentication and TLS/SSL best practices.
Hands-on exposure to scripting and automation using Bash, PowerShell, Python, or similar languages.
Knowledge of cloud platforms (AWS, Azure) and container technologies like Kubernetes.
Ability to lead or contribute to risk assessments, compliance reviews, and policy development.
Strong stakeholder engagement and communication skills.
Ability to undergo and provide a valid standard police check.
Bonus Experience

Exposure to DevOps/CI-CD environments and integrating certificate automation into pipelines.
Familiarity with crypto agility strategies and emerging standards.
Experience with Thales HSM and hardware-based key protection solutions.
Understanding of network principles such as LTMs, GTMs
Why Telstra?

Flexible work – hybrid and remote options to support work-life integration.
16 weeks paid parental leave – for both primary and secondary carers.
Free Telstra mobile plan – stay connected on us.
Laptop/device allowance – renewed every 2 years.
Purchased annual leave – more time when you need it.
Professional development programs – grow your career with us.
Discounts – on Telstra products and services.
If you're passionate about digital trust, certificate automation, and cyber resilience, apply today and help shape a secure, connected future at Telstra.

We’re committed to building a diverse and inclusive workforce in all its forms. We encourage applications from people of all backgrounds, including those from diverse gender, cultural and linguistic communities, and individuals living with a disability.