What Jobs are available for Security Engineer in Australia?

Description
Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure.
AWS Security is looking for a Security Systems Engineer to play a pivotal role in ensuring the security and integrity of our systems and infrastructure. You will work closely with our security team to implement and maintain robust security measures that adhere to Australian Government security requirements, including the Protective Security Policy Framework (PSPF) and the Information Security Manual (ISM).
Key job responsibilities
Key responsibilities may include:
* Assist in implementing and maintaining security measures to safeguard systems and infrastructure, gaining valuable hands-on experience in foundational security practices.
* Support security assessments and audits to identify vulnerabilities and risks, learning alongside experienced professionals to enhance risk mitigation skills
* Work closely with cross-functional teams to contribute ideas and support the design and deployment of security solutions, gaining exposure to collaborative project environments
* Learn to monitor security systems and assist in responding to security incidents under guidance, developing essential incident response skills.
* Contribute insights to the development of security policies and standard operating procedures, gaining exposure to policy-making processes and industry standards.
* Offer support and guidance to internal teams on security best practices, learning from experienced mentors while assisting in implementing security measures effectively.
Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
A typical day for a Security Systems Engineer starts with reviewing security logs and alerts to identify potential threats, gaining valuable exposure to real-world security monitoring practices. Throughout the day, they collaborate closely with the security team to analyze security incidents and contribute to the development of response strategies, learning from experienced professionals in incident response. Additionally, they conduct security assessments on new systems and applications, honing their skills in evaluating security risks and vulnerabilities. In meetings with cross-functional teams, they actively participate in discussions on security requirements and initiatives, gaining insights into the broader organizational security landscape. Finally, they dedicate time to researching emerging security threats and technologies, staying current with industry trends and continuously expanding their knowledge base. This hands-on experience and exposure to various aspects of security operations are essential for their growth and development in the field.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
The team is comprised of security professionals with a cross section of national security and private sector experience, providing a range of perspectives required for creative problem solving. We value diversity of thought, creativity, and a strong Bias for Action and Earn Trust. We believe that there are no "perfect" security solutions and we develop and iterate using a continuous improvement process.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Basic Qualifications
- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience
- Bachelor's degree in computer science or equivalent
- Knowledge of networking protocols such as HTTP, DNS and TCP/IP
Preferred Qualifications
- 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Experience with AWS products and services
- Experience with programming languages such as Python, Java, C+Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

**Description**
+ We're a 'Family Friendly' certifiedworkplace - we understand the diverse roles our team members need to play within their own unique family setting and actively support them.
Our team feel Leidos is a great place to work. Learn more about our culture and benefits by visiting us here Work That Matters**
Leidos Australia delivers IT and airborne solutions that protect and advance the Australian way of life. Our 2000 local experts, backed by our global experience and network of partners, are working to solve the world's toughest challenges in government, intelligence, defence, aviation, border protection and health markets.
**Your New Role and Responsibilities**
Join our dynamic and well-established Cyber Security Engineering team within the Leidos Consolidated Processing Program for Defence. In this role, you'll collaborate with both Leidos CP and Defence personnel to manage and deliver systems and solutions that drive cyber security outcomes across a complex, managed environment. You'll be part of a multi-disciplinary team where versatility is valued-perfect for someone who enjoys wearing multiple hats and thrives in a fast-paced, mission-driven setting.
+ Implement security controls, standards, mitigations and solutions that support Defence's varied operations, including hardening Microsoft and Linux environments.
+ Collaborate with SOC analysts to ensure systems used for operational monitoring are maintained to a high standard.
+ Deliver high-quality, security-focused solutions across both new and existing systems, ensuring technical soundness from a security engineering perspective.
+ Provide technical assurance for network security and associated controls, supporting CP and Defence members in achieving their objectives on CP-managed systems.
+ Review and enhance solutions to ensure alignment with security engineering best practices and operational requirements.
**What** **You'll** **Bring to Make** **An** **Impact**
+ Demonstrated experience in one or more IT domains such as midrange systems, networks, end-user computing, automation or similar.
+ Strong communication skills with the ability to collaborate effectively across teams.
+ Highly desirable: Understanding of the Essential Eight, ISM controls and Defence Security Policy Framework (DSPF).
+ Highly desirable: Familiarity with Trellix EPO, Splunk, Ansible or Linux environments.
Don't worry if you don't tick all the boxes - if you meet most of them, we encourage you to submit your application. We're most interested in your strengths, what you want to learn and how far you want to go.
_This role does require the successful applicant to be an Australian Citizen and h_ _old_ _a minimum of NV-1 clearance with a view to uplift to NV-2._
**Di** **verse** **Team Members** **, Shared** **Values** **and a Common Purpose**
_Providing our customers with smarter solutions takes an incredible team with diversity of thought, experience and perspectives d_ _riving innovation._ _Inclusion is at the heart of our culture and is one of our core values_ _._ _I_ _t's_ _about creating a_ _workplace_ _where everyone_ _can do important work,_ _feels_ _welcome, valued_ _, and_ _respected, and has equal access to opportunities to thrive._ _Paul Chase - Chief Executive_ _,_ _Leidos Australia._
Leidos Australia is an equal opportunities organisation and is committed to creating a truly inclusive workplace. We welcome and encourage applications from Aboriginal and Torres Strait Islanders, culturally and linguistically diverse people, people with disabilities, veterans, neurodiverse people, and people of all genders, sexualities, and age groups.
Our five Advocacy Groups (Women and Allies Network, Young Professionals, Defence & Emergency Services, Action for Accessibility and Abilities and Pride+) provide an opportunity for team members to connect and collaborate on shared interests, and work to support and celebrate our diverse community.
**Next Steps**
+ To apply for this role, follow the links or apply via our Careers page.
+ Recruitment process - interviewsand background checks.
+ Applicants may also need to meet International Traffic in Arms Regulations (ITAR) requirements. In certain circumstances this can place limitations on persons who hold dual nationality, permanent residency or are former nationals of certain countries as per ITAR 126.1.
+ We are committed to making our recruitment process accessible to all candidates. Please contact our Careers team if you'd like to discuss anyadditional support during your application or throughout the recruitment process.
At Leidos, we don't want someone who "fits the mold"-we want someone who melts it down and builds something better. This is a role for the restless, the over-caffeinated, the ones who ask, "what's next?" before the dust settles on "what's now."
If you're already scheming step 20 while everyone else is still debating step 2. good. You'll fit right in.
**Original Posting:**
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
**Pay Range:**
The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
**About Leidos**
Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit .
**Pay and Benefits**
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at .
**Securing Your Data**
Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at .
If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission ( .
**Commitment to Non-Descrimination**
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.
REQNUMBER: R-
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.

Microsoft's Cloud Operations & Innovation (CO+I) is the engine that powers our cloud services. We are seeking a skilled and proactive Cybersecurity Engineer with a minimum of 3 years of hands-on experience in security operations, threat detection, and incident response. This role is ideal for professionals looking to deepen their expertise across SIEM/SOAR platforms, Microsoft Defender solutions, cloud security, and OT/ICS environments, while contributing to a high-performing security team.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Do you want to empower billions across the world? Come and join us in CO+I and be at the forefront of the action!
**Responsibilities**
**Responsibilities:**
+ Lead investigations into security incidents and coordinate response efforts across IT and OT environments.
+ Develop, tune, and maintain detection rules and threat models within SIEM platforms.
+ Design and implement automated workflows using SOAR tools to streamline incident response.
+ Collaborate with cross-functional teams to improve threat visibility and reduce response times.
+ Support the integration and optimization of Microsoft Defender for Endpoint, Defender for Cloud, Defender for IoT and Sentinel.
+ Contribute to cloud security initiatives, including configuration reviews, logging, and compliance assessments.
+ Assist in securing OT/ICS environments through segmentation, monitoring, and protocol analysis.
+ Contribute to knowledge sharing and documentation.
**Other**
+ Embody our culture ( and values ( .
**Qualifications**
**Required Qualifications:**
+ 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
+ OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
**Background Check Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
While not required, we also look for the following **Preferred Qualifications:**
+ CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, PCCSE, PCNSE, PCSAE, CCNP Security, CCIE Security, CySA, CASP+ and/or CompTIA Security+ certification.
+ Relevant cloud infra certifications such as SC-200, AZ-500, or equivalent
+ Strong background in firewalls or intrusion detection or prevention systems
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Description
This position can also be based in Sydney, Australia.
We are looking for an experienced Principal Security Engineer to join the Security team in Australia. You will be on a team responsible for conducting both pre and post launch testing, offensive campaigns, emergent threat testing, creating/maintaining automated threat emulation solutions, and helping security and service teams add offensive insight to their development, deployment, monitoring, and response processes. This team partners with the larger Security organization and Service teams to continuously validate security throughout the service/system lifecycle.
You will be an expert across multiple domains such as cyber security; threat, vulnerability and risk assessments (TVRA), security tools (e.g. Splunk, Crowstrike, etc.), application of security frameworks (e.g. ISM, NIST, etc.) and/or implementation and monitoring of cyber security controls (i.e. detection, protection, alerting, etc.) and will be sought out for advice on a range of technical and business related issues. Your role will help ensure that our systems and processes are secured against the latest threats and you will lead security testing of large Amazon projects while setting standards and defining best practices for the Security team. You will proactively share knowledge across the Amazon community and will be a critical member of the organization in one or more of the core areas of security.
Key job responsibilities
* Offering recommendations and fine-tuning findings to enhance threat mitigations, ensuring robust security measures are in place.
* Setting a high standard and generating high-quality testing plans and reports, striving for excellence in security testing procedures.
* Conducting offensive security testing and engaging in ongoing vulnerability research to proactively identify potential risks.
* Systematically identifying vulnerabilities and meticulously tracking them to facilitate timely remediation efforts.
* Staying ahead of emerging threats by continuously testing systems and applications for vulnerabilities that may arise.
* Developing and maintaining automated solutions for emulating threats, enhancing efficiency and accuracy in threat detection.
* Providing security training and conducting outreach sessions with internal development teams to raise awareness and foster a security-conscious culture.
* Developing comprehensive security guidance documentation, including policies, procedures, and best practices, to serve as a reference for the organization.
* Designing and building security tools tailored to the organization's needs, enhancing the overall security posture.
* Delivering meaningful security metrics to stakeholders and continuously improving the metrics for better insight into the security landscape.
Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
Engineers in this role must show exemplary judgment in making technical trade-offs between short versus long term security and business goals. They must also demonstrate resilience and navigate difficult situations with composure and tact. Conflicts should be addressed by listening, finding the best way forward and persuading one's colleagues. Successful engineers in this role will regularly analyze their own performance with a critical eye. A broad understanding of the business and its interconnections is required. This position will also provide training, advice, and mentorship to other engineers.
Basic Qualifications
* Minimum 10+ years of experience in delivering cyber security solution to large enterprises or to Government customers.
* Proven ability to provide technical and strategic oversight for a high-performing team of security professionals.
* Demonstrated experience creating effective security strategies that balance prevention and detection, drive risk reduction and mitigation.
Preferred Qualifications
* Bachelor's degree in Computer Science or Engineering* Masters' degree or PhD in Cybersecurity or related domain.
* Worked on large-scale cloud programs to deliver security outcomes.
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Snap Inc ( is a technology company. We believe the camera presents the greatest opportunity to improve the way people live and communicate. Snap contributes to human progress by empowering people to express themselves, live in the moment, learn about the world, and have fun together. The Company's three core products are Snapchat ( , a visual messaging app that enhances your relationships with friends, family, and the world; Lens Studio ( , an augmented reality platform that powers AR across Snapchat and other services; and its AR glasses, Spectacles ( .
Snap Engineering ( teams build fun and technically sophisticated products that reach hundreds of millions of Snapchatters around the world, every day. We're deeply committed to the well-being of everyone in our global community, which is why our values ( are at the root of everything we do. We move fast, with precision, and always execute with privacy at the forefront.
We are seeking a Threat Intelligence focused security engineer to join our Detection and Response (D&R) team, based in Sydney.
In this dynamic role, you will be instrumental in tracking sophisticated threat actors and engineering innovative security solutions. Collaborating with our global teams in the US and Switzerland, you will adopt a threat-informed engineering mindset. Your responsibilities will include identifying and neutralizing threats across our production environments, corporate infrastructure, and internal tools, as well as protecting against and responding to any suspicious activity across our digital infrastructure.
This isn't your typical analyst position. We dedicate significant time to research, innovation, and development, ensuring Snap stays ahead of evolving adversaries.
If you're ready to make a tangible global impact by securing a platform that serves hundreds of millions of users worldwide, join us and help shape the future of security at Snap Inc.
What You'll Do
+ Identify, analyze, and develop threat intelligence on emerging adversary tactics, techniques, and procedures (TTPs), across both APT and cybercrime ecosystems.
+ Proactively track, model, and monitor threat actors and campaigns that may impact Snap Inc.
+ Research and innovate new detection and response capabilities, developing tools and automations to enhance threat hunting and incident response.
+ Leverage AI and automation to build scalable, industry-leading intelligence and response systems.
+ Design, pilot, and implement robust logging and alerting systems to detect and prevent malicious activity across Snap's endpoints, infrastructure, networks, and cloud environments.
+ Lead and coordinate incident response efforts, collaborating across multiple Snap teams to investigate and mitigate threats.
+ Partner with global stakeholders to drive continuous improvement in Snap's detection, intelligence, and response capabilities
Knowledge, Skills & Abilities:
+ Proven experience in one or more of the following detection and response areas: threat intelligence, threat hunting, digital forensics, malware analysis, incident response/management, host/network intrusion detection.
+ Strong development skills in Python and/or Go
+ Understanding of operating system internals, with a core competency in two or more of the following including file and disk structures, forensic process, security controls, hardening, scripting and binary investigations:
+ macOS
+ Windows
+ Linux
+ Advanced knowledge of cloud infrastructure, including being able to build and deploy systems and investigate security events across two or more of the below:
+ Kubernetes
+ Google Cloud Platform
+ Amazon Web Services
Minimum Qualifications:
+ Bachelor of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field
+ 3+ years of experience in the field of incident response, detection engineering or related security disciplines
If you have a disability or special need that requires accommodation, please don't be shy and provide us some information ( .
"Default Together" Policy at Snap: At Snap Inc. we believe that being together in person helps us build our culture faster, reinforce our values, and serve our community, customers and partners better through dynamic collaboration. To reflect this, we practice a "default together" approach and expect our team members to work in an office 4+ days per week.
At Snap, we believe that having a team of diverse backgrounds and voices working together will enable us to create innovative products that improve the way people live and communicate. Snap is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification, in accordance with applicable federal, state, and local laws. EOE, including disability/vets.
Our Benefits ( : Snap Inc. is its own community, so we've got your back! We do our best to make sure you and your loved ones have everything you need to be happy and healthy, on your own terms. Our benefits are built around your needs and include paid parental leave, comprehensive medical coverage, emotional and mental health support programs, and compensation packages that let you share in Snap's long-term success!
**A Decade of Snap ( **:** Learn about our origin story, values, mission, culture of innovation, and more.
**CitizenSnap ( **:** In our third annual CitizenSnap Report, we demonstrate progress towards our environmental, social, and governance (ESG) goals, and we lay out our plans looking forward.
**The DEI Innovation Summit ( **:** Watch highlights from the 2nd annual DEI Innovation Summit, which brings together thought leaders and DEI experts for a day of courageous conversations to enable bold action.
**Snap News ( **:** Stay up to date on the latest and greatest product and innovation news at Snap
Applicant and Candidate Privacy Policy (

Senior Product Security Engineer
Job Description
**About CoStar Group**
CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world's real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives.
We have been living and breathing the world of real estate information and online marketplaces for over 35 years, giving us the perspective to create truly unique and valuable offerings to our customers. We've continually refined, transformed, and perfected our approach to our business, creating a language that has become standard in our industry, for our customers, and even our competitors. We continue that effort today and are always working to improve and drive innovation. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.
**About Domain**
Domain is a leading property technology and services marketplace that is home to one of the largest portfolios of property brands in Australia, including the Domain, Allhomes and Commercial Real Estate (CRE) platforms. In 2025, Domain became part of CoStar Group (NASDAQ: CSGP), a global leader in commercial real estate information, analytics, online marketplaces and 3D digital twin technology. Together, Domain and CoStar Group is dedicated to digitising the world's real estate, empowering all people to discover properties, insights, and connections that improve their businesses and lives.
We're looking for a highly collaborative and deeply technical Senior Product Security Engineer to be a pivotal force in shaping our Application Security (AppSec) future. This is your chance to drive our strategic vision by making security an intrinsic, seamless part of our software development lifecycle.
Reporting to the Group Engineering Manager - Product Security, you will be the crucial link, the advisor, and the implementer working directly with our development teams. You will be instrumental in deploying initiatives from our cutting-edge Application Security Framework and fostering a culture where security is everyone's responsibility.
This position will collaborate with software development teams, DevOps and security to drive and shape the way our employees and engineers build, deploy and operate applications.
This position is located in either Sydney or Melbourne and is in office Tuesday through Thursday with work from home on Monday and Friday.
**Responsibilities**
Success here is measured by your ability to proactively embed security and drive tangible change. You will achieve this by:
+ Leading Security Integration: Champion efforts to fully integrate security into our DevOps processes, promoting a culture of security ownership and awareness across the organization. Work with the software and product teams to help ensure applications are designed and implemented securely during the SDLC.
+ Hands-On Security Mastery: Acting as the primary security advisor, you'll conduct implementation reviews of solution designs, lead crucial threat modeling sessions, and perform hands-on security code reviews.
+ Tooling & Automation: Automate security testing at various stages within the CI/CD pipelines. Consume a variety of application security tools (DAST, SAST, SCA, Credential Scanning, IAC scanning) to secure web applications during development and production run-time. Manage and operate our critical security tools, ensuring maximum efficiency and coverage.
+ Resilience & Compliance: Partnering with GRC to ensure adherence to industry standards and collaborating with Security Operations to provide crucial support during the investigation and response to security incidents.
**Basic Qualifications**
+ Bachelor's degree required from an accredited, not for profit university or college (preferably in Computer Science/Cybersecurity or related field).
+ 5+ years experience in a Product/Application Security or DevSecOps role.
+ A track record of commitment to prior employers or a track record of delivering long-term impact to prior employers.
+ Strong knowledge of DevOps principles and practices, as well as security best practices.
+ Ability to communicate effectively with both cybersecurity and engineering teams.
+ Ability to collaborate across Product, Security, DevOps, Product, and development teams.
+ Proficiency in scripting and automation (e.g., Java, C/C++, C#, Python, JavaScript, PowerShell)
+ Experience with container security (Docker, ECS, Kubernetes) and cloud security (AWS, Azure, or GCP).
**Preferred Qualifications and Skills**
+ Hands-on experience implementing security tools into CI/CD pipelines and IDE interfaces including Static Application Security Testing (SAST) and Static Application Analysis (SCA) solutions.
+ Experience with web application penetration testing and identifying attack chains to evaluate the severity of vulnerabilities.
+ Strong communication skills with both software development and software leadership audiences, including the ability to communicate with different levels of leadership conveying risk and driving urgency for risk remediation.
+ A self-starter who can advance the application security program and follow-through ideas to completion.
+ Experience coordinating with application teams to drive security by design principles.
+ Knowledge of infrastructure operations across databases, network, and system administration.
+ Experience testing modern applications in cloud-native tech stacks.
**Why join us?**
We're the kind of place you can make a real impact, with a workplace culture where you can be you. It's a fun, safe space where you'll always feel you belong. Perks of the role include:
+ Hybrid working;
+ First-rate parental leave;
+ Continuous opportunities to leap, learn and grow in a team that values creativity and innovation;
We don't just talk, we do. Every day we solve property problems for Australians and beyond. We encourage our people to see the possibilities, and turn them into realities.
**What's next?**
We'll give your application the thoughtful attention it deserves and get back to you as soon as possible. If there's a match, one of our recruitment consultants will reach out so keep your phone handy! We're genuinely excited about the chance to work together and make a meaningful impact.
Equity, Diversity and Inclusion at Domain
Domain is enthusiastically and unapologetically committed to fostering an equitable, inclusive work culture which reflects our customers and communities. We are proactively looking for candidates from all lived experiences, including people with disability, and people of all ages, ethnicities, cultures (including Aboriginal and Torres Strait Islander Peoples), faiths, sexual orientations, and gender identities (including trans and non-binary people).
We are committed to providing an equitable recruitment process for people with disability. If you require adjustments during the process we're here to support. If you wish to receive this job advertisement in an accessible format, or have a confidential chat about workplace adjustments, please contact our Equity, Diversity and Inclusion team at or leave a message on and we will get back to you.
CoStar Group is an Equal Employment Opportunity Employer; we maintain a drug-free workplace and perform pre-employment substance abuse testing
CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world's real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives.
We have been living and breathing the world of real estate information and online marketplaces for over 37 years, giving us the perspective to create truly unique and valuable products and services. We've continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry and for our customers. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.
CoStar is committed to creating a diverse environment and is proud to be an equal opportunity workplace and affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. CoStar is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to use or access as a result of your disability. You can request reasonable accommodations by calling or by sending an email to .

Description
Amazon is seeking for a Senior Security Engineer to join the Vulnerability Management and Remediation team in Sydney, Australia.
The VMR team is responsible for the discovery, assessment, triage, and remediation of vulnerabilities across Amazon. We are data-driven, set big goals, and are always challenging ourselves and each other to identify better solutions and take on new challenges. Our team offers the unique opportunity to work with leading industry security experts and engage across Amazon teams and leadership.
As a Senior Security Engineer, you will be responsible for the timely and accurate detection of vulnerabilities across the complexity and scale of the Amazon ecosystem. Your teammates are a global team of security engineers, software developers, and technical program managers dedicated to continuously raising the security bar.
Key job responsibilities
- Deeply understand and assess the technical details and potential impact of vulnerabilities across Amazon's infrastructure, services, and applications.
- Lead the detection and analysis of vulnerabilities through the development and optimization of vulnerability scanning, correlation, and prioritization capabilities.
- Thoroughly investigate and triage vulnerabilities, identifying severity and the scope of potential impact to Amazon.
- Design and implement automation, tools and workflows to enhance our operations capabilities.
- Partner with software engineering and operations teams to identify and increase coverage and detection capability gaps across Amazon.
- Mentor and train junior security engineers, sharing your expertise in vulnerability management best practices.
- Collaborate with information security leadership to set the strategic direction for the VMRO program and report on key performance metrics.
- Be part of a global team and participate in periodic on-call responsibilities to ensure the continuous monitoring and remediation of vulnerabilities.
About the team
Our team operates out of our fabulous Sydney Office.
Basic Qualifications
- BS degree in Computer Science, Computer Engineering, Software Engineering, Cybersecurity or related technical degree; or 5+ years equivalent technology experience
- 7 years engineering experience in system, network, and/or application security or the development of security products.
- 5 years experience improving the operations of vulnerability discovery mechanisms across a diverse technical ecosystem
- 5 years experience in operations, automation and process improvement and building applications on cloud-based services.
Preferred Qualifications
- Experience in vulnerability management particularly in host and OS detection engineering.
- Experience with implementing and operating a wide range of vulnerability management tools.
- Experience building with AWS services.
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Microsoft's Cloud Operations & Innovation (CO+I) is the engine that powers our cloud services.
We are seeking a skilled and motivated Security Operations Engineer with a strong background in network security, cloud infrastructure, and automation. If you have a passion for security and a keen interest in securing enterprise environments through modern tools and practices, including Azure DevOps, Microsoft Defender, and OT/ICS security, we want to hear from you.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Do you want to empower billions across the world? Come and join us in CO+I and be at the forefront of the action!
**Responsibilities**
**Responsibilities:**
+ Manage and optimize network security infrastructure including NGFWs (e.g., Palo Alto Networks), IDS/IPS, and segmentation.
+ Develop and maintain secure Azure cloud environments using Infrastructure-as-Code (IaC) tools such as Terraform or ARM templates.
+ Build and maintain CI/CD pipelines in Azure DevOps with integrated security controls.
+ Collaborate with SOC and engineering teams to enhance detection capabilities and automate response workflows.
+ Integrate and tune Microsoft Defender solutions including Defender for Endpoint, Identity, and Cloud.
+ Support OT/ICS security initiatives through monitoring, protocol analysis, and segmentation.
+ Contribute to detection engineering efforts and SIEM content development.
+ Document processes, playbooks, and technical configurations.
**Other**
+ Embody our culture ( and values ( .
**Qualifications**
**Required Qualifications:**
+ 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
+ OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
+ Strong background in Firewalls or Intrusion detection or prevention systems
+ Experience working in hybrid cloud environments and securing enterprise infrastructure.
**Other Requirements:**
+ Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
**Background Check Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
While not required, we also look for the following **Preferred Qualifications:**
+ DevOps & Automation: Proficiency in CI/CD pipeline development, secure deployment practices, and automation scripting (PowerShell, Python).
+ Relevant cloud infra certifications such as SC-200, AZ-500, or equivalent.
+ CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, PCCSE, PCNSE, PCSAE, CCNP Security, CCIE Security and/or Security+ certification.
+ Hands on experience with SIEM/SOAR platforms and Microsoft Defender suite
+ OT/ICS Security: Any experience with industrial control systems is preferred (not mandatory)
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Microsoft's Cloud Operations & Innovation (CO+I) is the engine that powers our cloud services.
We are seeking a skilled and motivated Security Operations Engineer with a strong background in network security, cloud infrastructure, and automation. If you have a passion for security and a keen interest in securing enterprise environments through modern tools and practices, including Azure DevOps, Microsoft Defender, and OT/ICS security, we want to hear from you.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Do you want to empower billions across the world? Come and join us in CO+I and be at the forefront of the action!
**Responsibilities**
**Responsibilities:**
+ Manage and optimize network security infrastructure including NGFWs (e.g., Palo Alto Networks), IDS/IPS, and segmentation.
+ Develop and maintain secure Azure cloud environments using Infrastructure-as-Code (IaC) tools such as Terraform or ARM templates.
+ Build and maintain CI/CD pipelines in Azure DevOps with integrated security controls.
+ Collaborate with SOC and engineering teams to enhance detection capabilities and automate response workflows.
+ Integrate and tune Microsoft Defender solutions including Defender for Endpoint, Identity, and Cloud.
+ Support OT/ICS security initiatives through monitoring, protocol analysis, and segmentation.
+ Contribute to detection engineering efforts and SIEM content development.
+ Document processes, playbooks, and technical configurations.
**Other**
+ Embody our culture ( and values ( .
**Qualifications**
**Required Qualifications:**
+ 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
+ OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
+ Strong background in Firewalls or Intrusion detection or prevention systems
+ Experience working in hybrid cloud environments and securing enterprise infrastructure.
**Other Requirements:**
+ Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
**Background Check Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
While not required, we also look for the following **Preferred Qualifications:**
+ DevOps & Automation: Proficiency in CI/CD pipeline development, secure deployment practices, and automation scripting (PowerShell, Python).
+ Relevant cloud infra certifications such as SC-200, AZ-500, or equivalent.
+ CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, PCCSE, PCNSE, PCSAE, CCNP Security, CCIE Security and/or Security+ certification.
+ Hands on experience with SIEM/SOAR platforms and Microsoft Defender suite
+ OT/ICS Security: Any experience with industrial control systems is preferred (not mandatory)
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .