Senior DevSecOps Engineer - Public Cloud - FTC

We’ve only just begun, but what a beginning. In a once in a generation moment, we’ve brought together powerful brands to create one united force. TPG Telecom has a powerhouse of brands which include Vodafone, TPG, iiNet, Internode, Lebara, AAPT and felix. The latest technology and brave thinking let us connect our people and communities. You could play a role in that. A big one. We invite you to bring your boldness and stand out. You are empowered. Opportunities are plenty for those ready to accept the challenge.

This opportunity

The role entails analysing, designing, and expanding the public cloud automation framework to enhance visibility for identifying critical risks and effectively communicating their impact to various stakeholders. This role is instrumental in helping infrastructure and application teams to integrate security controls, governance, and best practices into management and delivery pipelines, ensuring strict adherence to security compliance and policies. Given the escalating risk of cyber threats, this role assumes a crucial role in fortifying the organisation's security posture and defences on a large scale.

Responsibilities

• Responsible for design and implementation and roll out of the Public Cloud Security automation framework aligning to the defined Public Cloud Security roadmap
• Implementation of key cyber security controls and defences against threats in Public Cloud environments
• Collaborate with a range of Technology stakeholders to drive the development and uplift of security culture, and communicating security controls and objectives to both technical and non-technical stakeholders
• Implement and socialise key security metrics to assist in the assessment of the maturity of the security posture of Public Cloud environments
• Implementation of security testing, detection and response processes, tools and automation
• We are all responsible for taking reasonable care of our own safety and wellbeing at work, and to avoid adversely affecting the safety and wellbeing of another person at work.
• Always be on the lookout to improve the way we work, and speak up with suggestions for a better way, with the aim of exceeding our customers’ expectations.
• Plan your work and be ready to take advantage of the opportunities and risks that come with our ever-changing industry.
• Protect the brand, reputation and profitability of TPG by maintaining the confidentiality, integrity and availability of its information assets and information systems.
• Be familiar with policies and procedures, as well as completing any associated training, as communicated or made available on the intranet and our learning systems.
• Identify and promote areas of improvement in processes and tooling

Knowledge and experience

• Solid experience with AWS.
• Strong knowledge of Infrastructure-As-Code tools to automate deployments
• Knowledge of CloudFormation and at least one of the following (Python, Java, Ruby, Javascript, C#, C++) in a business application development context, with Python preferred
• Clear understanding of security landscape within the public cloud space and best practices for code and infrastructure
• Creating CI/CD pipelines in tools such as AWS Code Build, Code Deploy, Code Pipeline
• Experience designing and implementing security controls within pipelines such as SAST and DAST tools, using these to gate deployments to higher environments
• Knowledge on WAF and firewalls configurations
• Worked with Splunk or similar log analyser
• Experience with the AWS Well Architected Framework
• Understanding of Security tooling and best practice used in Public Cloud
• Understanding of Risk Management and related processes
• Strong written and oral communication skills
• Worked in an agile environment
• Working in, and promotion of, collaborative working environments

Benefits and perks

• Flexible hybrid way of working (from home and office)
• ‘Stay Connected Mobile’ – Access to a free mobile plan
• ‘Stay Connected NBN’ – Access to a free NBN 100 plan
• ‘Your Leave’ - an additional 4 days of leave to be used whenever you like - every year
• Access to TPG Learning Hub platform and internal development opportunities
• Access to Corporate Partner Discounts

Bolder and better together! 

Don’t meet every single requirement? We're ok with that. Studies have shown that women and those of underrepresented groups are less likely to apply for roles unless they meet every single criteria. At TPG Telecom we recognise that what may make you different, makes the difference!

We’re all about enabling every individual to be their authentic selves and creating a place where everybody belongs. If you are excited about this role, but your experience doesn’t align perfectly with every qualification in the job description, we encourage you to APPLY NOW regardless. You may just be the right candidate for this or perhaps another similar role with us.

We are a 2024 Circle Back Initiative Employer – we commit to respond to every applicant.

Our Talent Acquisition Team and Hiring Managers kindly request no unsolicited resumes or approaches from Recruitment Agencies. TPG Telecom is not responsible for any fees related to unsolicited resumes.

#LI-Hybrid #LI-RS1 IND2