Senior DevSecOps Engineer

Bring your ‘you’ to TPG Telecom, and help us build meaningful relationships and support vibrant, connected communities. We’re better and bolder together.

TPG Telecom started with a belief that we can make things better for Australians. We believe in the power of meaningful relationships to support vibrant, connected communities where everyone belongs. It’s our why; our reason to exist. Now, we’re proud to be one of Australia’s leading mobile and internet providers. We’re not just redefining telco, we’re changing its course. And you play a role in that. A big one. The opportunities are plenty for those who are ready to accept the challenge.

Could that be you?

Your opportunity:

The role entails analysing, designing, and expanding the public cloud automation framework to enhance visibility for identifying critical risks and effectively communicating their impact to various stakeholders. This role is instrumental in helping infrastructure and application teams to integrate security controls, governance, and best practices into management and delivery pipelines, ensuring strict adherence to security compliance and policies. Given the escalating risk of cyber threats, this role assumes a crucial role in fortifying the organisation's security posture and defences on a large scale.

You'll make impact by:

• Designing, implementing, and rolling out the Public Cloud Security automation framework in alignment with the defined Public Cloud Security roadmap
• Implementing key cybersecurity controls and deploying defences against threats in Public Cloud environments
• Collaborating with a range of Technology stakeholders to drive security culture development and communicating security controls and objectives to both technical and non-technical audiences
• Implementing and socialising key security metrics to assess the maturity of the security posture in Public Cloud environments
• Executing security testing, detection, and response processes using appropriate tools and automation strategies
• Taking reasonable care for personal safety and wellbeing at work, and ensuring the safety and wellbeing of others is not adversely impacted
• Looking out for ways to improve work processes and speaking up with suggestions to better exceed customer expectations
• Planning work proactively to seize opportunities and address risks in an ever-changing industry
• Protecting TPG’s brand, reputation, and profitability by maintaining confidentiality, integrity, and availability of its information assets and systems
• Being familiar with policies and procedures, and completing required training as communicated via intranet and learning platforms
• Identifying and promoting improvements in processes and tooling to strengthen operations

What you’ll bring:

• Solid experience with AWS
• Strong knowledge of Infrastructure-As-Code tools to automate deployments
• Knowledge of CloudFormation and at least one of the following (Python, Java, Ruby, Javascript, C#, C++) in a business application development context, with Python preferred
• Clear understanding of security landscape within the public cloud space and best practices for code and infrastructure
• Creating CI/CD pipelines in tools such as AWS Code Build, Code Deploy, Code Pipeline
• Experience designing and implementing security controls within pipelines such as SAST and DAST tools, using these to gate deployments to higher environments
• Knowledge on WAF and firewalls configurations
• Worked with Splunk or similar log analyser
• Experience with the AWS Well Architected Framework
• Understanding of Security tooling and best practice used in Public Cloud
• Understanding of Risk Management and related processes
• Strong written and verbal communication skills, coupled with an ability to collaborate with a team

What's in it for you?

• Flexible hybrid way of working (from home and office)
• ‘Stay Connected Mobile’ – Access to a free mobile plan
• ‘Stay Connected NBN’ – Access to a free NBN 100 plan
• ‘Your Leave’ - an additional 4 days of leave to be used whenever you like - every year
• Access to TPG Learning Hub platform and internal development opportunities
• Access to Corporate Partner Discounts

Come join us and build a better future. Apply today.

Don’t meet every single requirement? That’s OK! At TPG Telecom, we’re all about creating an accessible workplace where everybody feels safe to bring their authentic self to work - regardless of background. If you think this role is a great fit for you but some of the qualifications don’t align with your experience, we still encourage you to apply - you might just be the perfect candidate for a similar role with us! Learn more about life at TPG Telecom here.

TPG Telecom also acknowledges the Gadigal People of the Eora Nation as the Traditional Custodians of lands and waterways where this office can be found in Barangaroo.

Our Talent Acquisition Team and Hiring Managers kindly request no unsolicited resumes or approaches from Recruitment Agencies. TPG Telecom is not responsible for any fees related to unsolicited resumes.

#LI-Hybrid #LI-TS1