Strategic Leadership & Communication

• Executive Technical Liaison: Act as a primary advisor to the leadership team possessing the ability to articulate complex technical concepts to non-technical stakeholders with clarity and precision.
• Infrastructure Roadmap: Contribute to the development and execution of a multi-year IT strategy that aligns with organizational growth and security objectives.
• Financial Stewardship: Conduct regular audits of Microsoft 365 licensing (Business vs. Enterprise) and cloud consumption (AWS/Azure) to identify cost-saving opportunities and ensure maximum return on investment.
• Technical Mentorship: Lead by example fostering a culture of high performance thorough documentation and continuous improvement within the engineering team.

Key Technical Responsibilities

• Modern Workplace & Identity: Provide expert-level administration of the Microsoft 365 tenant with a focus on Intune (Endpoint Manager) for Autopilot and compliance SharePoint Online architecture and Exchange Online security.
• Identity & Access Management (IAM): Act as the primary architect for Entra ID (Azure AD). Oversee the lifecycle of Enterprise Applications including SAML/OIDC SSO integrations App Registrations and Conditional Access policies to ensure secure seamless user authentication.
• Zero Trust Networking: Architect and manage Zscaler (ZIA & ZPA) environments to provide secure seamless access to internet and private resources replacing traditional VPN dependencies.
• Cloud Engineering (AWS & Azure): Design and optimize our primary AWS footprint focusing on Application Load Balancers (ALB) VPN Gateways and Route 53. Maintain and govern Azure workloads and Entra ID (Azure AD) integrations.
• Core Infrastructure Services: Oversee the integrity of Active Directory Group Policy (GPOs) DHCP and DNS. Manage the Microsoft PKI (AD CS) environment to support RADIUS (NPS) and certificate-based authentication (802.1X).
• Automation & DevOps: Drive operational efficiency through advanced PowerShell scripting and API integrations (Microsoft Graph). Manage and maintain Docker container environments for modern application delivery.

Required Qualifications & Skills

• Communication: Exceptional verbal and written communication skills; demonstrated ability to explain complex topics simply to diverse audiences.
• Security Mindset: A proactive approach to security validation ensuring all infrastructure aligns with the ACSC Essential Eight and modern cybersecurity frameworks.
• Experience: 7 years in Systems Engineering with at least 3 years in a Lead or Senior capacity managing enterprise-scale hybrid environments.
• Technical Breadth: Expert knowledge of Windows Server (2016-2022) Windows Desktop and high-availability networking protocols (BGP OSPF VLANs).
• Clearance: Must hold or be eligible to obtain an Australian Government Baseline Security Clearance (requires Australian Citizenship).

Why This Position

This role offers the opportunity to move beyond routine maintenance and into a position of genuine technical architectural influence. You will have the autonomy to select best-in-class tools the responsibility to manage significant cloud budgets and the platform to shape the future of our digital infrastructure.

About Us

Service Stream is an equal opportunity ASX listed business that develops and operates Australias essential service networks across telecommunications utilities transport defence and social infrastructure industries. We keep communities connected.

Benefits of working with us include:

• Flexible working We genuinely consider all flexibility requests.
• Growth Career development opportunities across our expanding business.
• Discounts Access to hundreds of major retailers including Woolworths Airbnb JB Hi-Fi and Bupa.
• Paid leave Parental cultural community service study corporate volunteering and purchased leave.
• Culture A workplace that values diversity inclusion and celebrates excellence.

How to apply

Please submit your interest via the Apply button where you will be directed to create a profile in our system.

We celebrate diversity at Service Stream and welcome applications from Aboriginal and/or Torres Strait Islander peoples people with disabilities or neurodivergence and those from LGBTIQA Veteran or other diverse groups.

Applications will not be accepted via email.

If you require reasonable adjustments during the recruitment process please contact:

How to Apply