Australia 
Brazil 
Canada 
Chile 
China 
Columbia 
Denmark 
Egypt 
France 
India 
Indonesia 
Ireland 
Italy 
Malaysia 
New Zealand 
Norway 
Panama 
Peru 
Poland 
Portugal 
Saudi Arabia 
Singapore 
South Korea 
Spain 
Sweden 
Taiwan 
Thailand 
Türkiye 
United Kingdom 
Vietnam 
SYSTRA is one of the world's leading engineering and consultancy groups specialising in public transport and sustainable mobility. With over 10,300 employees, SYSTRA's mission is to design safe and sustainable transport solutions to bring people together, develop social inclusion and facilitate access to employment, education and leisure throughout the world.
For 65 years, the Group has been working alongside cities and regions to contribute to their development by creating, improving and modernising their infrastructure and transport systems, throughout the life cycle of their projects. SYSTRA is involved from the earliest stages of design through to the testing, deployment and maintenance phases. The company provides all its services in over 80 countries worldwide and generates 74% of its turnover internationally. With its new services, SYSTRA supports its clients and partners in their digital, ecological and energy transition, in order to invent the mobility of tomorrow.
Context
About the role
The Senior Cyber Security Engineer leads day-to-day cybersecurity activities for critical operational environments to ensure security, compliance, and resilience. This role oversees governance, risk assessments, and vulnerability management in alignment with established Management Plans and contractual requirements. By providing technical guidance to support teams, vendors, and subcontractors, the position ensures the safe, reliable, and compliant operation of critical systems while supporting organisational objectives and client confidence.
Missions/Main Duties
Key responsibilities include:
- Cybersecurity Governance & Compliance: Execute day-to-day security activities, ensuring all systems meet stringent contract requirements and applicable policies. Lead compliance assurance, audit support, and evidence gathering.
- Risk & Vulnerability Management: Conduct technical risk assessments for system changes, vulnerabilities, and emerging threats. Oversee patching, secure configuration, and remediation tracking.
- Operational Security Oversight: Manage access control reviews, applying principles of least privilege and RBAC. Oversee logging, monitoring, and the secure administration of critical assets.
- Incident Response & Resilience: Provide technical support for security incident investigations and participate in resilience reviews, disaster recovery exercises, and threat detection activities.
- Technical Guidance & Liaison: Act as a subject matter expert for maintainers, subcontractors, and vendors. Provide clear technical guidance to ensure all parties meet security obligations.
- Documentation & Reporting: Maintain cybersecurity plans, risk registers, and procedures. Deliver high-quality governance reporting and communication for both internal and client stakeholders.
Profile/Skills
About you
- Bachelor level qualifications in Cyber Security, Information Technology, Computer Science, Engineering, Telecommunications, or a related discipline.
- Relevant certifications such as CISSP, CISM, Security+, GIAC, or ISO 27001 are highly desirable.
- Minimum 5 years’ experience in cyber security, information security, or security engineering.
- Proven experience in Operational Technology (OT), critical infrastructure, telecommunications, or other complex regulated environments.
- Hands-on experience with PAM (Privileged Access Management), SIEM, VMS (Vulnerability Management Systems), EPP (Endpoint Protection), Application Control, Micro-segmentation, and Anomaly/Threat Detection (ATD) platforms.
- Strong awareness of cybersecurity in operational networks and critical communications systems, including the capability for hands-on systems interaction.
- Demonstrated ability to perform risk assessments and manage complex vulnerability lifecycles.
- Ability to liaise effectively with operators, maintainers, suppliers, and client representatives.
- Exceptional written and verbal communication skills, specifically regarding technical cybersecurity reporting and procedure development.
Benefits of working at SYSTRA:
At SYSTRA, we prioritise the well-being and professional growth of our employees by offering a comprehensive range of benefits. We're committed to nurturing your career development, providing ongoing support for obtaining Chartership status and providing access to continuous learning opportunities. Furthermore, we cover the costs of professional memberships and subscriptions, ensuring you stay connected to industry developments.
Recognising the importance of maintaining a healthy work-life balance, we offer flexible working arrangements and generous paid parental leave. Our inclusive workplace culture, endorsed by Work180, celebrates diversity and values every individual's unique contribution. To further demonstrate our appreciation for our team members, we offer attractive employee referral incentives as a token of recognition for their valuable contributions.
Click this link to view all our benefits: https://work180.com/en-au/for-women/employer/systra
At SYSTRA ANZ, we value diversity of thought and experience. We encourage applications from Aboriginal & Torres Strait Islanders and people from diverse backgrounds.
Our values are centred around Connected Teams, Excellence and Bold Leadership