Platform SecOps Engineer

Job Description

Salary: Competitive and based on experience Location: Melbourne - Hybrid Keywords: SecOps, Engineer, AWS, Cloud Security, DevSecOps Our client is in the midst of a business transformation, shifting from a gas pipeline constructor and operator to a renewable energy and infrastructure provider. As part of this exciting change, they are seeking a Platform SecOps Engineer to secure, maintain, and enhance their AWS cloud platform. This role offers the opportunity to work within a dynamic team that builds and maintains the AWS landing zone and foundational cloud toolchains. The successful candidate will be instrumental in implementing security controls, managing security tools, and embedding security automation into DevSecOps processes. Key Responsibilities: Manage, configure and integrate Palo Alto Prisma for Cloud Security Posture Management (CSPM), Cloud Workload Protection Platform (CWPP) and Cloud Infrastructure Entitlement Management (CIEM) Automate security monitoring and remediation workflows using Prisma, AWS Security Hub and GuardDuty Enforce security configurations for AWS IAM, VPC security, encryption (KMS), secrets management (Hashicorp Vault), privileged access management (Delinea) and logging (CloudTrail, CloudWatch, SIEM integration with Exabeam) Review, secure and enforce security standards in Terraform and CloudFormation templates Develop pre-deployment security validation for infrastructure code to detect misconfigurations and vulnerabilities Provide automated security controls for IaC via policy-as-code Ensure infrastructure deployments comply with CIS AWS Benchmarks, NIST, ISO 27001 and internal security standards Manage SAST/SCA tooling for application engineers to check for vulnerabilities in third-party dependencies What You Bring: 5+ years of IT security experience, with at least 3+ years focused on AWS cloud security Hands-on experience managing and operating Prisma CNAPP for CSPM, CWPP, and CIEM Expertise in AWS security services (IAM, Security Hub, GuardDuty, KMS, SCPs, VPC security) Strong knowledge of infrastructure-as-code security (Terraform, CloudFormation) and policy-as-code enforcement Experience integrating security tooling (SAST, SCA, container scanning) into CI/CD pipelines Knowledge of container and orchestration platforms (ECS, EKS, Docker) and security frameworks and controls pertaining to these Familiarity with SIEM integration (Exabeam), privileged access management (Delinea) and key management (Hashicorp Vault) Collaborative mindset with strong communication skills What Sets This Company Apart: Our client is at the forefront of the renewable energy and infrastructure industry. They are committed to providing an inclusive work environment where everyone feels valued and respected. The company offers flexible working opportunities and generous pensions contributions. They also provide ample training opportunities to ensure their employees are always at the cutting edge of industry developments. Aboriginal and Torres Strait Islander Peoples are encouraged to apply. To apply please click apply or call Anthony Buccat on +61 3 8628 2261 for a confidential discussion. About the Job: Contract Type: FULL_TIME Specialism: Information Technology Industry: Oil and Gas Salary: AUD190,000 - AUD200,000 per annum Workplace Type: Hybrid Experience Level: Mid Management Job Reference: 2038160/001 Date posted: 12 February 2025 Consultant: Anthony Buccat Come join our global team of creative thinkers, problem solvers and game changers. We offer accelerated career progression, a dynamic culture and expert training. #J-18808-Ljbffr