We are proud to be an equal opportunities employer. Hansen prides itself on celebrating diversity and is committed to creating an inclusive environment for all employees, even extending this to how we work with our customers, partners, and suppliers. We welcome applications from all qualified candidates, regardless of age, disability, gender identity or expression, marital status, race, ethnicity, religion or belief, sexual orientation, or any other protected characteristic. If you require any adjustments or accommodation during the recruitment process, please let us know.
Why This Role Matters
As a Security Assurance Engineer, you play a key role in ensuring that cybersecurity controls are effectively designed, correctly implemented, and operating as intended across the organisation’s technology environment.
The role provides hands‑on technical assurance by performing deep security reviews, driving control uplift initiatives, and translating governance and policy requirements into practical, enforceable technical controls.
This position plays a critical role in strengthening security posture, improving audit readiness, and reducing risk by bridging the gap between security intent and real‑world implementation, with a strong focus on cloud, identity, data protection, and emerging technologies.
What You’ll Do
* Delivery Technical Security Assurance: Conduct deep security reviews across cloud, identity, data protection, monitoring, and network controls.
* Strengthen Cloud Security Posture: Identify gaps and uplift security controls across cloud platforms and services.
* Validate Control Effectiveness: Perform manual and automated assurance testing to ensure controls operate as designed.
* Translate Policy into Practice: Convert security and governance requirements into practical, enforceable technical controls – including Policy as Code.
* Support Audit & Compliance: Develop automated mechanisms for evidence collection and support internal and external audits.
* Drive Continuous Improvement: Enhance security assurance, business continuity, and risk management processes through automation and innovation.
* Advise & Enable the Business: Act as a trusted subject‑matter expert supporting regional teams and third‑party security assessments.
* Report with Impact: Develop meaningful, automated security reporting for executive and business stakeholders.
What You Bring
* A solid understanding of IT governance and controls.
* Strong experience with Microsoft cloud security platforms.
* In‑depth knowledge of cloud security principles, including identity, access management, monitoring, logging, and data protection.
* Experience translating security policies into policy‑as‑code (e.g. Terraform or similar).
* Practical experience developing, testing, and validating IT security controls.
* Capability in scripting, automation, and API consumption.
* Confidence producing clear, data‑driven security reports for stakeholders.
* Strong analytical thinking, documentation, and communication skills.
Nice to have
* Experience with Microsoft Entra ID (Conditional Access, MFA, PIM).
* Experience with Microsoft Purview (DLP, Information Protection, Retention).
* Familiarity with Microsoft Defender for Cloud and security posture management.
* Knowledge of industry frameworks such as ISO 27001, NIST CSF, CIS Benchmarks, or Essential Eight.
* Exposure to AI / LLMs and modern automation concepts.
* Security certifications such as CISA, CISSP, CISM, or CRISC.
Benefits and Perks
Join us for a rewarding career with competitive compensation, leave entitlements, health coverage, and financial security. Enjoy work‑life balance, growth, and recognition for your exceptional performance. Our team will unveil the intricacies of our benefit package during the selection process.
#J-18808-Ljbffr