Picture this: you’re leading a security engineering team ~15 strong who are responsible for delivering network security and identity management solutions across diverse, complex client environments.
This team operates across three core pillars: firewalls, SASE/Secure Access, and Privileged Access Management. Right now, they've got strong firewall coverage. What they need is a Principal Security Engineer who's a technical expert in either PAM (CyberArk, specifically) or the SASE/Zero Trust piece - someone who can lead the team, shape strategy, and elevate how they deliver these services to clients.
This role sits at the tip of the spear, and you'll have 5 direct reports including 2 other Principals. More importantly, you'll be the technical authority clients, vendors, and colleagues turn to when things get complex - not to solve problems for them every time, but to teach them how to solve problems for themselves.
If your background is limited to break-fix, single-vendor deployments, or solving the same problems repeatedly for teams, this likely isn't the right fit. If, however, you're a technical expert in PAM or SASE / Zero Trust who can lead teams, influence outcomes, and teach people to solve problems for themselves, please keep reading.
To succeed in a role like this, you'll likely be comfortable with the following: - Deep technical expertise in CyberArk PAM, or Secure Access/SASE platforms - Zscaler, Cloudflare, and similar Zero Trust solutions.
- Confidence holding your own in technical conversations with customers, vendors, and internal colleagues - defending your expert POV while leading people to outcomes, not dictating them.
- Teaching teams to fish, not feeding them every time they're hungry - building capability, not creating dependency.
- Knowing when to step in, when to delegate, and when to step back - mature, self-aware leadership.
- Navigating complexity across large clients with multi-vendor relationships.
- Strategic thinking beyond technical execution - contributing to GTM discussions, scoping service offerings, and advising on capability builds (e.g., "Can we do X? Should we build that capability? How?").
- Service provider or managed services experience (huge plus).
So, what's in it for you? - Aligned with experience, a salary around the mid-high 100s + super, with a double-digit bonus paid every 6-months.
- Flexibility to work WFH, although while no in-office mandate exists, expect to be in the office ~2 days/week (Sydney or Melbourne - Sydney strongly preferred).
- Senior, visible leadership role delivering managed security services at scale.
- Autonomy, trust, and the space to operate like a senior technical leader
- Ongoing training and development.
- A culture that truly champions a fun social side atop service delivery.
Your Impact - Lead and direct engineering outcomes cyber security managed services.
- Act as technical escalation point for complex issues that have come through levels of engineers.
- Influence pre-sales and GTM activities - advising sales leadership on service scope and capability builds.
- Navigate complexity across customers, vendors, and internal teams with multi-vendor relationships
- Lead onshore and offshore resources while coordinating across time zones.
Brass Tacks This role suits someone who is technically deep in PAM (CyberArk) or Secure Access/SASE (Zscaler, Cloudflare, Zero Trust), strategically minded, and capable of leading without dictating. You'll need to be big enough to hold an opinion and drive a conversation, but smart enough not to dictate outcomes. You'll need to teach teams to fish, not feed them every time they're hungry.
If you enjoy being the person teams, customers, and vendors trust when complex technical and leadership decisions really matter, this one is worth a conversation.
All that said, if you're curious and have full Australian work rights, reach out below. There's more context that can be shared confidentially.
How to apply… Your application is completely confidential. Only you and I will know. Want to chat about what you’re looking for? Reach out anytime.
Click APPLY or email me directly at mpearman@decipherbureau.com for an informal, 100% confidential conversation.
We’re committed to diversity and inclusion. All qualified applicants will be considered fairly, regardless of race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status.