Hey there, IDAM folks. Let’s talk modern authentication. Not the clunky, bolted-on kind, but robust, friction-aware, phishing-resistant authentication that works for people, platforms, and products alike.

This full-time IDAM Engineer role in Sydney sits within a lean, highly technical security team. You’ll work across IT, engineering, and product teams to drive secure identity across users, devices, and services, including systems that don’t live in the cloud and some incredibly interesting kit.

If you love solving complex problems at scale, automating away toil, and pushing towards a Zero Trust model, you’ll feel right at home.

This is a hands-on engineering role, and a strategic one, too, which requires a few days per week in the office. You just might like that as this office has a distinct “cool” factor to it. You’ll help shape how authentication and access controls evolve in a product-led environment where security is a first-class citizen.

What’s In It For You?

• A base salary in the mid-high $100’s / low $200’s range (plus super), depending on your experience, strengths and depth.
• You’ll get to work on technically novel systems with layered threat models, not just webapps and cloud infra.
• You’ll be given space to lead initiatives and run with ideas. Truly, if you thrive in autonomy and prefer ownership over red tape, this is the place for you.
• You'll collaborate with a highly capable, agile, “get stuff done” team of engineers who care about security, quality, and doing things right.
• You’ll enjoy a social aspect, if that’s your cuppa – run club, badminton, after work drinks, etc. This isn’t an “all work and no play” type place.

What Do You Need To Bring?

You’re a senior-level IDAM practitioner who can go deep. Not just name-dropping the protocols, but understanding their internals and explaining them clearly. You’ve likely built, broken, and defended systems that hinge on good authentication and thoughtful access controls. You’ll bring:

• Strong engineering fundamentals – maybe a CS or IT background, or maybe just years of hands-on builds.
• Experience delivering secure systems using Python (or similar), with IaC chops and cloud-native mindset.
• Familiarity with protocols like OAuth2, OIDC, and SAML, and the ability to explain how and why they’re used in different contexts.
• Knowledge of JIT access models, identity lifecycle management, and how to harden identity systems operationally.
• Bonus points if you bring systems thinking, creative problem-solving, and the ability to communicate complex ideas without jargon.

What Will You Be Doing?

“Typical day” here? Unlikely, but you’ll probably get involved in:

• Leading identity and access initiatives across both internal and customer-facing systems.
• Driving phishing-resistant MFA across the business.
• Creating and roll-out JIT access controls for high-privilege environments.
• Helping to build out device and user identity that integrates cleanly with BYOD and internal systems.
• Influencing the broader Zero Trust architecture and identity strategy.
• Jumping into cross-functional projects that touch security, infra, and product authentication.

The Reality Of This Role…

This isn’t a role for someone who only configures vendor tools or follows a checklist. You’ll need to go beyond surface-level knowledge and confidently architect, defend, and explain your decisions, across authentication, access, and infrastructure.

You’ll be challenged to design and influence systems that affect both internal users and customer-facing products. If you’ve ever wished your organisation really took identity seriously… well, this one does.

Interested? Shoot through a message and let’s chat. There’s plenty more detail we can share in confidence to help you work out if this one’s for you.

HOW TO APPLY

Firstly, please know that any application you make is treated with abject confidentiality. The only people who will know you’ve applied are you & me. Reach out, and let’s chat about what you want.

Click APPLY and/or contact Michael directly on [email protected] for a 100% confidential, informal conversation where your privacy will absolutely be respected.

Decipher Bureau and the clients we partner with are committed to creating a diverse environment and are proud to be equal opportunity employers. All qualified applicants will be considered for employment without attention to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status.