Security Community Architect at Red Hat focusing on open source security and governance. Collaborating with stakeholders to implement security policies and enhance community engagement.
About the role
- Security Engineer responsible for designing and optimizing the security platform across on-prem and cloud environments. Collaborates with SOC and IT teams to strengthen security controls efficiently in Sydney, Australia.
Responsibilities
- Operate and fine-tune EDR, ensuring high visibility and timely response to detections.
- Investigate alerts, triage incidents, and coordinate remediation with IT and engineering teams.
- Develop and maintain detection rules, response playbooks, and operational dashboards.
- Run regular vulnerability scans across endpoints, servers, and cloud workloads.
- Prioritize findings based on exploitability and asset criticality.
- Work with system owners to track remediation progress and verify fixes.
- Review and improve AWS configurations using AWS tools or CNAPP / CSPM monitoring tools (e.g., Wiz, Orca)
- Support secure architecture and IaC practices (Terraform, CloudFormation) with dev teams.
- Automate checks and alerting for misconfigurations and policy violations.
- Support developers on secure coding practices and pipeline integration (e.g., Snyk).
- Review secrets management, API credential handling, and CI/CD pipeline security.
- Implement and maintain least privilege and MFA policies across systems.
- Assist with SSO/SCIM integrations (e.g., Entra ID, 1Password, Cloudflare Zero Trust).
- Work alongside IT Operations and Cloud teams to deploy, harden, and monitor security tools.
- Participate in incident response exercises, phishing simulations, and post-incident reviews.
- Contribute to process documentation and internal knowledge base (e.g., runbooks, playbooks).
Requirements
- **4–6 years of hands-on security experience**, ideally in endpoint protection, cloud security, or vulnerability management.
- Strong working knowledge of **AWS security services**, IAM, and network fundamentals.
- Practical experience with **EDR tools (CrowdStrike, Defender, etc.)** and vulnerability scanners (Qualys, Tenable, etc.).
- Solid understanding of incident response, detection engineering, and access control principles.
- Exposure to security frameworks (ISO 27001, SOC 2, NIST) is a plus, but not mandatory.
- Clear communicator who can explain security findings to both technical and non-technical teams.
Benefits
- Celebrate your tenure with us! Receive generous milestone anniversary gifts that grow with each year of service.
- Join a vibrant workplace culture with fantastic team-building activities, fostering camaraderie and collaboration among colleagues.
- Prioritize your well-being!
- Invest in your growth!
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Mid - Level Multi Operations Specialist managing technical support for video security systems at Boeing. Responsibilities include system administration, troubleshooting, and project management in complex environments.
Senior Security Analyst assessing security controls and risks for governance, risk, and compliance. Collaborating with teams to strengthen security posture while ensuring compliance with frameworks like ISO 27001.
Technical Support role in industrial safety for Grifols, a global healthcare leader. Responsibilities include compliance management and operational support for industrial safety.
Senior Information Security Advisor ensuring patient data protection and implementing security frameworks at Novo Nordisk. Leading strategic initiatives to safeguard healthcare data and maintain trust across the organization.
Senior Analyst handling AMS support for SAP Security with Deloitte. Focus on troubleshooting, solution design, and team leadership in a diverse working environment.
Identity Security Specialist developing custom identity management solutions at Lincoln Electric. Leading integration with systems like Active Directory and ensuring compliance with security policies in a global context.
OT Security Consultant at Sword delivering security across operational and industrial environments. Leading assessments and improvement plans while collaborating with engineering and asset teams.
Lead cybersecurity operations for Operational Technology at NTT DATA Romania. Focus on security threat detection, response, and optimization in various customer environments.
Offensive Security Engineer at Replit leading penetration testing and security for cloud - native platform. Focused on securing AI - integrated system through advanced adversarial tactics and code analysis.