Job Title: Security Operations Engineer (Cloud & DevSecOps)
Location: Melbourne / Canberra / Brisbane (Hybrid)
Job Type: Contract

Job Summary:
We are seeking a Security Ops Engineer with strong experience in AWS cloud security and DevSecOps. The role focuses on securing cloud environments, integrating security into CI/CD pipelines, and supporting vulnerability management, monitoring, and automation.

Key Responsibilities:

• Implement and manage AWS security controls (IAM, EC2, S3, CloudTrail, Security Groups)
• Integrate security within Azure DevOps (ADO) pipelines including SAST/DAST and approvals
• Support IaC deployments using AWS CDK or similar tools
• Perform vulnerability scanning using Tenable Nessus (or equivalent)
• Integrate security findings into SIEM/GRC tools (e.g., ServiceNow)
• Configure monitoring and alerting using AWS CloudWatch
• Perform log analysis using Splunk or ELK Stack
• Support secure code analysis using Fortify, SonarQube, or Xray
• Assist in implementing SBOM practices (CycloneDX)
• Develop automation scripts for security and compliance

Key Requirements:

• Strong experience in cloud security / DevSecOps
• Hands-on experience with AWS security services
• Experience with CI/CD security integration (ADO preferred)
• Knowledge of vulnerability management and logging tools
• Understanding of secure coding practices (Python, Java, JavaScript)
• Strong analytical and problem-solving skills

Important Note:

• Active NV1 Security Clearance is mandatory