25 Security Testing jobs in Australia

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft 365 aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft 365 Security team accelerates Microsoft's mission and bold ambitions to ensure that our company is securing our platforms, devices, and clouds. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day.
Are you passionate about identifying and exploiting security vulnerabilities that impact hundreds of millions of users across the world? Join the M365 Security organization, where you will emulate real-world advanced persistent threats against Microsoft. Our mission is to ensure Microsoft is prepared to face and respond to even the most determined adversaries by exploring innovative ways to identify and prevent security flaws.
We are looking for a **Penetration Testing Specialist** to execute operations and collaborate with other experienced pen testers in identifying and exploiting vulnerabilities across all layers of services, including application, cloud, network, hardware, and operational security domains. You will work closely with developers and security personnel from multiple teams across Microsoft. Additionally, as a Security Engineer in M365, you will be responsible for executing tactics, techniques, and procedures of potential attackers, while providing critical insights that empower our security teams to strengthen defenses and protect against the evolving landscape of digital threats.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.
**Responsibilities**
+ Discover and exploit vulnerabilities end-to-end in order to assess the security of services.
+ Execute operations using real world adversarial tactics and techniques to validate a production service's ability to detect, investigate, and respond.
+ Advocate for security change across the company through building partnerships and clearly communicating impact of risks.
+ Analyze a wide array of data sources to identify potential security weaknesses and breach points within Microsoft's infrastructure.
+ Prototype tools and techniques to scale and accelerate offensive emulation and vulnerability discovery.
+ Collaborate with Blue Teams to improve readiness and produce solutions for defenders and customers.
+ Analyze simulated adversary tactics and communications, enriching our defensive tactics and threat intelligence.
**Qualifications**
**Required Qualifications:**
+ 3+ years experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.
**Other Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings:
+ **Microsoft Cloud Background Check** : This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
**Preferred Qualifications:**
+ Master's Degree in Statistics, Mathematics, Computer Science
+ OR related field
+ OR 4+ years experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft 365 aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft 365 Security team accelerates Microsoft's mission and bold ambitions to ensure that our company is securing our platforms, devices, and clouds. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day.
Are you passionate about identifying and exploiting security vulnerabilities that impact hundreds of millions of users across the world? Join the M365 Security organization, where you will emulate real-world advanced persistent threats against Microsoft. Our mission is to ensure Microsoft is prepared to face and respond to even the most determined adversaries by exploring innovative ways to identify and prevent security flaws.
We are looking for a **Penetration Testing Specialist** to execute operations and collaborate with other experienced pen testers in identifying and exploiting vulnerabilities across all layers of services, including application, cloud, network, hardware, and operational security domains. You will work closely with developers and security personnel from multiple teams across Microsoft. Additionally, as a Security Engineer in M365, you will be responsible for executing tactics, techniques, and procedures of potential attackers, while providing critical insights that empower our security teams to strengthen defenses and protect against the evolving landscape of digital threats.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.
**Responsibilities**
+ Discover and exploit vulnerabilities end-to-end in order to assess the security of services.
+ Execute operations using real world adversarial tactics and techniques to validate a production service's ability to detect, investigate, and respond.
+ Advocate for security change across the company through building partnerships and clearly communicating impact of risks.
+ Analyze a wide array of data sources to identify potential security weaknesses and breach points within Microsoft's infrastructure.
+ Prototype tools and techniques to scale and accelerate offensive emulation and vulnerability discovery.
+ Collaborate with Blue Teams to improve readiness and produce solutions for defenders and customers.
+ Analyze simulated adversary tactics and communications, enriching our defensive tactics and threat intelligence.
**Qualifications**
**Required Qualifications:**
+ 3+ years experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.
**Other Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings:
+ **Microsoft Cloud Background Check** : This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
**Preferred Qualifications:**
+ Master's Degree in Statistics, Mathematics, Computer Science
+ OR related field
+ OR 4+ years experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft 365 aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft 365 Security team accelerates Microsoft's mission and bold ambitions to ensure that our company is securing our platforms, devices, and clouds. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day.
Are you passionate about identifying and exploiting security vulnerabilities that impact hundreds of millions of users across the world? Join the M365 Security organization, where you will emulate real-world advanced persistent threats against Microsoft. Our mission is to ensure Microsoft is prepared to face and respond to even the most determined adversaries by exploring innovative ways to identify and prevent security flaws.
We are looking for a **Penetration Testing Specialist** to execute operations and collaborate with other experienced pen testers in identifying and exploiting vulnerabilities across all layers of services, including application, cloud, network, hardware, and operational security domains. You will work closely with developers and security personnel from multiple teams across Microsoft. Additionally, as a Security Engineer in M365, you will be responsible for executing tactics, techniques, and procedures of potential attackers, while providing critical insights that empower our security teams to strengthen defenses and protect against the evolving landscape of digital threats.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.
**Responsibilities**
+ Discover and exploit vulnerabilities end-to-end in order to assess the security of services.
+ Execute operations using real world adversarial tactics and techniques to validate a production service's ability to detect, investigate, and respond.
+ Advocate for security change across the company through building partnerships and clearly communicating impact of risks.
+ Analyze a wide array of data sources to identify potential security weaknesses and breach points within Microsoft's infrastructure.
+ Prototype tools and techniques to scale and accelerate offensive emulation and vulnerability discovery.
+ Collaborate with Blue Teams to improve readiness and produce solutions for defenders and customers.
+ Analyze simulated adversary tactics and communications, enriching our defensive tactics and threat intelligence.
**Qualifications**
**Required Qualifications:**
+ 3+ years experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.
**Other Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings:
+ **Microsoft Cloud Background Check** : This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
**Preferred Qualifications:**
+ Master's Degree in Statistics, Mathematics, Computer Science
+ OR related field
+ OR 4+ years experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Description
Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure.
AWS Security is looking for a Security Systems Engineer to play a pivotal role in ensuring the security and integrity of our systems and infrastructure. You will work closely with our security team to implement and maintain robust security measures that adhere to Australian Government security requirements, including the Protective Security Policy Framework (PSPF) and the Information Security Manual (ISM).
Key job responsibilities
Key responsibilities may include:
* Assist in implementing and maintaining security measures to safeguard systems and infrastructure, gaining valuable hands-on experience in foundational security practices.
* Support security assessments and audits to identify vulnerabilities and risks, learning alongside experienced professionals to enhance risk mitigation skills
* Work closely with cross-functional teams to contribute ideas and support the design and deployment of security solutions, gaining exposure to collaborative project environments
* Learn to monitor security systems and assist in responding to security incidents under guidance, developing essential incident response skills.
* Contribute insights to the development of security policies and standard operating procedures, gaining exposure to policy-making processes and industry standards.
* Offer support and guidance to internal teams on security best practices, learning from experienced mentors while assisting in implementing security measures effectively.
Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
A typical day for a Security Systems Engineer starts with reviewing security logs and alerts to identify potential threats, gaining valuable exposure to real-world security monitoring practices. Throughout the day, they collaborate closely with the security team to analyze security incidents and contribute to the development of response strategies, learning from experienced professionals in incident response. Additionally, they conduct security assessments on new systems and applications, honing their skills in evaluating security risks and vulnerabilities. In meetings with cross-functional teams, they actively participate in discussions on security requirements and initiatives, gaining insights into the broader organizational security landscape. Finally, they dedicate time to researching emerging security threats and technologies, staying current with industry trends and continuously expanding their knowledge base. This hands-on experience and exposure to various aspects of security operations are essential for their growth and development in the field.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
The team is comprised of security professionals with a cross section of national security and private sector experience, providing a range of perspectives required for creative problem solving. We value diversity of thought, creativity, and a strong Bias for Action and Earn Trust. We believe that there are no "perfect" security solutions and we develop and iterate using a continuous improvement process.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Basic Qualifications
- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience
- Bachelor's degree in computer science or equivalent
- Knowledge of networking protocols such as HTTP, DNS and TCP/IP
Preferred Qualifications
- 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Experience with AWS products and services
- Experience with programming languages such as Python, Java, C+Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Microsoft's Cloud Operations & Innovation (CO+I) is the engine that powers our cloud services. We are seeking a skilled and proactive Cybersecurity Engineer with a minimum of 3 years of hands-on experience in security operations, threat detection, and incident response. This role is ideal for professionals looking to deepen their expertise across SIEM/SOAR platforms, Microsoft Defender solutions, cloud security, and OT/ICS environments, while contributing to a high-performing security team.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Do you want to empower billions across the world? Come and join us in CO+I and be at the forefront of the action!
**Responsibilities**
**Responsibilities:**
+ Lead investigations into security incidents and coordinate response efforts across IT and OT environments.
+ Develop, tune, and maintain detection rules and threat models within SIEM platforms.
+ Design and implement automated workflows using SOAR tools to streamline incident response.
+ Collaborate with cross-functional teams to improve threat visibility and reduce response times.
+ Support the integration and optimization of Microsoft Defender for Endpoint, Defender for Cloud, Defender for IoT and Sentinel.
+ Contribute to cloud security initiatives, including configuration reviews, logging, and compliance assessments.
+ Assist in securing OT/ICS environments through segmentation, monitoring, and protocol analysis.
+ Contribute to knowledge sharing and documentation.
**Other**
+ Embody our culture ( and values ( .
**Qualifications**
**Required Qualifications:**
+ 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
+ OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
**Background Check Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
While not required, we also look for the following **Preferred Qualifications:**
+ CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, PCCSE, PCNSE, PCSAE, CCNP Security, CCIE Security, CySA, CASP+ and/or CompTIA Security+ certification.
+ Relevant cloud infra certifications such as SC-200, AZ-500, or equivalent
+ Strong background in firewalls or intrusion detection or prevention systems
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Description
This position can also be based in Sydney, Australia.
We are looking for an experienced Principal Security Engineer to join the Security team in Australia. You will be on a team responsible for conducting both pre and post launch testing, offensive campaigns, emergent threat testing, creating/maintaining automated threat emulation solutions, and helping security and service teams add offensive insight to their development, deployment, monitoring, and response processes. This team partners with the larger Security organization and Service teams to continuously validate security throughout the service/system lifecycle.
You will be an expert across multiple domains such as cyber security; threat, vulnerability and risk assessments (TVRA), security tools (e.g. Splunk, Crowstrike, etc.), application of security frameworks (e.g. ISM, NIST, etc.) and/or implementation and monitoring of cyber security controls (i.e. detection, protection, alerting, etc.) and will be sought out for advice on a range of technical and business related issues. Your role will help ensure that our systems and processes are secured against the latest threats and you will lead security testing of large Amazon projects while setting standards and defining best practices for the Security team. You will proactively share knowledge across the Amazon community and will be a critical member of the organization in one or more of the core areas of security.
Key job responsibilities
* Offering recommendations and fine-tuning findings to enhance threat mitigations, ensuring robust security measures are in place.
* Setting a high standard and generating high-quality testing plans and reports, striving for excellence in security testing procedures.
* Conducting offensive security testing and engaging in ongoing vulnerability research to proactively identify potential risks.
* Systematically identifying vulnerabilities and meticulously tracking them to facilitate timely remediation efforts.
* Staying ahead of emerging threats by continuously testing systems and applications for vulnerabilities that may arise.
* Developing and maintaining automated solutions for emulating threats, enhancing efficiency and accuracy in threat detection.
* Providing security training and conducting outreach sessions with internal development teams to raise awareness and foster a security-conscious culture.
* Developing comprehensive security guidance documentation, including policies, procedures, and best practices, to serve as a reference for the organization.
* Designing and building security tools tailored to the organization's needs, enhancing the overall security posture.
* Delivering meaningful security metrics to stakeholders and continuously improving the metrics for better insight into the security landscape.
Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
Engineers in this role must show exemplary judgment in making technical trade-offs between short versus long term security and business goals. They must also demonstrate resilience and navigate difficult situations with composure and tact. Conflicts should be addressed by listening, finding the best way forward and persuading one's colleagues. Successful engineers in this role will regularly analyze their own performance with a critical eye. A broad understanding of the business and its interconnections is required. This position will also provide training, advice, and mentorship to other engineers.
Basic Qualifications
* Minimum 10+ years of experience in delivering cyber security solution to large enterprises or to Government customers.
* Proven ability to provide technical and strategic oversight for a high-performing team of security professionals.
* Demonstrated experience creating effective security strategies that balance prevention and detection, drive risk reduction and mitigation.
Preferred Qualifications
* Bachelor's degree in Computer Science or Engineering* Masters' degree or PhD in Cybersecurity or related domain.
* Worked on large-scale cloud programs to deliver security outcomes.
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Senior Product Security Engineer
Job Description
**About CoStar Group**
CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world's real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives.
We have been living and breathing the world of real estate information and online marketplaces for over 35 years, giving us the perspective to create truly unique and valuable offerings to our customers. We've continually refined, transformed, and perfected our approach to our business, creating a language that has become standard in our industry, for our customers, and even our competitors. We continue that effort today and are always working to improve and drive innovation. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.
**About Domain**
Domain is a leading property technology and services marketplace that is home to one of the largest portfolios of property brands in Australia, including the Domain, Allhomes and Commercial Real Estate (CRE) platforms. In 2025, Domain became part of CoStar Group (NASDAQ: CSGP), a global leader in commercial real estate information, analytics, online marketplaces and 3D digital twin technology. Together, Domain and CoStar Group is dedicated to digitising the world's real estate, empowering all people to discover properties, insights, and connections that improve their businesses and lives.
We're looking for a highly collaborative and deeply technical Senior Product Security Engineer to be a pivotal force in shaping our Application Security (AppSec) future. This is your chance to drive our strategic vision by making security an intrinsic, seamless part of our software development lifecycle.
Reporting to the Group Engineering Manager - Product Security, you will be the crucial link, the advisor, and the implementer working directly with our development teams. You will be instrumental in deploying initiatives from our cutting-edge Application Security Framework and fostering a culture where security is everyone's responsibility.
This position will collaborate with software development teams, DevOps and security to drive and shape the way our employees and engineers build, deploy and operate applications.
This position is located in either Sydney or Melbourne and is in office Tuesday through Thursday with work from home on Monday and Friday.
**Responsibilities**
Success here is measured by your ability to proactively embed security and drive tangible change. You will achieve this by:
+ Leading Security Integration: Champion efforts to fully integrate security into our DevOps processes, promoting a culture of security ownership and awareness across the organization. Work with the software and product teams to help ensure applications are designed and implemented securely during the SDLC.
+ Hands-On Security Mastery: Acting as the primary security advisor, you'll conduct implementation reviews of solution designs, lead crucial threat modeling sessions, and perform hands-on security code reviews.
+ Tooling & Automation: Automate security testing at various stages within the CI/CD pipelines. Consume a variety of application security tools (DAST, SAST, SCA, Credential Scanning, IAC scanning) to secure web applications during development and production run-time. Manage and operate our critical security tools, ensuring maximum efficiency and coverage.
+ Resilience & Compliance: Partnering with GRC to ensure adherence to industry standards and collaborating with Security Operations to provide crucial support during the investigation and response to security incidents.
**Basic Qualifications**
+ Bachelor's degree required from an accredited, not for profit university or college (preferably in Computer Science/Cybersecurity or related field).
+ 5+ years experience in a Product/Application Security or DevSecOps role.
+ A track record of commitment to prior employers or a track record of delivering long-term impact to prior employers.
+ Strong knowledge of DevOps principles and practices, as well as security best practices.
+ Ability to communicate effectively with both cybersecurity and engineering teams.
+ Ability to collaborate across Product, Security, DevOps, Product, and development teams.
+ Proficiency in scripting and automation (e.g., Java, C/C++, C#, Python, JavaScript, PowerShell)
+ Experience with container security (Docker, ECS, Kubernetes) and cloud security (AWS, Azure, or GCP).
**Preferred Qualifications and Skills**
+ Hands-on experience implementing security tools into CI/CD pipelines and IDE interfaces including Static Application Security Testing (SAST) and Static Application Analysis (SCA) solutions.
+ Experience with web application penetration testing and identifying attack chains to evaluate the severity of vulnerabilities.
+ Strong communication skills with both software development and software leadership audiences, including the ability to communicate with different levels of leadership conveying risk and driving urgency for risk remediation.
+ A self-starter who can advance the application security program and follow-through ideas to completion.
+ Experience coordinating with application teams to drive security by design principles.
+ Knowledge of infrastructure operations across databases, network, and system administration.
+ Experience testing modern applications in cloud-native tech stacks.
**Why join us?**
We're the kind of place you can make a real impact, with a workplace culture where you can be you. It's a fun, safe space where you'll always feel you belong. Perks of the role include:
+ Hybrid working;
+ First-rate parental leave;
+ Continuous opportunities to leap, learn and grow in a team that values creativity and innovation;
We don't just talk, we do. Every day we solve property problems for Australians and beyond. We encourage our people to see the possibilities, and turn them into realities.
**What's next?**
We'll give your application the thoughtful attention it deserves and get back to you as soon as possible. If there's a match, one of our recruitment consultants will reach out so keep your phone handy! We're genuinely excited about the chance to work together and make a meaningful impact.
Equity, Diversity and Inclusion at Domain
Domain is enthusiastically and unapologetically committed to fostering an equitable, inclusive work culture which reflects our customers and communities. We are proactively looking for candidates from all lived experiences, including people with disability, and people of all ages, ethnicities, cultures (including Aboriginal and Torres Strait Islander Peoples), faiths, sexual orientations, and gender identities (including trans and non-binary people).
We are committed to providing an equitable recruitment process for people with disability. If you require adjustments during the process we're here to support. If you wish to receive this job advertisement in an accessible format, or have a confidential chat about workplace adjustments, please contact our Equity, Diversity and Inclusion team at or leave a message on and we will get back to you.
CoStar Group is an Equal Employment Opportunity Employer; we maintain a drug-free workplace and perform pre-employment substance abuse testing
CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world's real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives.
We have been living and breathing the world of real estate information and online marketplaces for over 37 years, giving us the perspective to create truly unique and valuable products and services. We've continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry and for our customers. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.
CoStar is committed to creating a diverse environment and is proud to be an equal opportunity workplace and affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. CoStar is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to use or access as a result of your disability. You can request reasonable accommodations by calling or by sending an email to .

It all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today - ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Our intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work. But this is just the beginning of our journey. Join us as we pursue our purpose to make the world work better for everyone.
The Senior Information Security Engineer, as a key member of the Platform Support Administration team, is accountable for the administration, optimization, and continuous improvement of the ServiceNow platform, with a particular emphasis on SecOps applications. This role ensures the platform's stability and performance while aligning with organizational objectives. The individual will collaborate closely with end-users and stakeholders to provide timely and effective support.
**Key Responsibilities:**
+ Lead the day-to-day administration of the ServiceNow platform, including user and group management, access controls, data imports, and platform upgrades.
+ Develop tools in Python, bash, and/or JavaScript to replace manual work and improve customer maintenance experience.
+ Prepare to onboard new ServiceNow products. Provide training and knowledge transfer to the end users.
+ Use broad knowledge and experience of systems administration and networking principles to proactively prevent and address incidents while constantly improving documentation.
+ Participate in escalations and Root Cause Analysis of issues.
+ Configure and maintain core ServiceNow applications such as:
+ ITSM (Incident, Problem, Change, Request)
+ SecOps Applications (Vulnerability Response, Configuration Compliance Security Incident Response)
+ Serve as a lead technical expert for integrations between ServiceNow and third-party systems (e.g., via REST/SOAP APIs, MID servers).
+ Monitor platform health, performance, and security, implementing tuning and hardening measures as needed.
+ Evaluate and apply ServiceNow patches, upgrades, and hotfixes in accordance with release cycles.
+ Provide mentorship and oversight to internal and external teams.
+ Partner with stakeholders across internal Security, Digital transformation and other business units to gather requirements and implement scalable solutions.
**_Due to the nature of the role and regulatory requirements for this role, only candidates who are Australian citizens and on Australia soil can be considered._**
+ Bachelor's degree in computer science, Information Systems, or related field, or equivalent experience.
+ 5+ years of hands-on system administration experience in a complex enterprise environment.
+ Proficiency in scripting languages used in ServiceNow (e.g., JavaScript, GlideScript).
+ Experience with ServiceNow update sets, ACLs, client/server scripts, UI policies, and customizations.
+ Strong understanding of ITIL/ITSM processes.
+ Demonstrated experience managing ServiceNow upgrades and platform migrations.
**Preferred Skills:**
+ ServiceNow Certified System Administrator (CSA) certification.
+ SecOps Applications Specialist Certificate
+ AIOps experience
+ Familiarity with Agile or Scrum delivery methodologies.
+ Experience with automated testing tools in the ServiceNow ecosystem (e.g., ATF).
**Work Personas**
We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here ( . To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service.
**Equal Opportunity Employer**
ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements.
**Accommodations**
We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact for assistance.
**Export Control Regulations**
For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities.
From Fortune. ©2025 Fortune Media IP Limited. All rights reserved. Used under license.

Microsoft's Cloud Operations & Innovation (CO+I) is the engine that powers our cloud services.
We are seeking a skilled and motivated Cybersecurity Engineer with a strong background in network security, cloud infrastructure, and automation. If you have a passion for security and a keen interest in securing enterprise environments through modern tools and practices, including Azure DevOps, Microsoft Defender, and OT/ICS security, we want to hear from you.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Do you want to empower billions across the world? Come and join us in CO+I and be at the forefront of the action!
**Responsibilities**
**Responsibilities:**
+ Manage and optimize network security infrastructure including NGFWs (e.g., Palo Alto Networks), IDS/IPS, and segmentation.
+ Develop and maintain secure Azure cloud environments using Infrastructure-as-Code (IaC) tools such as Terraform or ARM templates.
+ Build and maintain CI/CD pipelines in Azure DevOps with integrated security controls.
+ Collaborate with SOC and engineering teams to enhance detection capabilities and automate response workflows.
+ Integrate and tune Microsoft Defender solutions including Defender for Endpoint, Identity, and Cloud.
+ Support OT/ICS security initiatives through monitoring, protocol analysis, and segmentation.
+ Contribute to detection engineering efforts and SIEM content development.
+ Document processes, playbooks, and technical configurations.
**Other**
+ Embody our culture ( and values ( .
**Qualifications**
**Required Qualifications:**
+ 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
+ OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
+ Strong background in Firewalls or Intrusion detection or prevention systems
+ Experience working in hybrid cloud environments and securing enterprise infrastructure.
+ DevOps & Automation: Proficiency in CI/CD pipeline development, secure deployment practices, and automation scripting (PowerShell, Python).
**Other Requirements:**
+ Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
**Background Check Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
While not required, we also look for the following **Preferred Qualifications:**
+ Relevant cloud infra certifications such as SC-200, AZ-500, or equivalent.
+ CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, PCCSE, PCNSE, PCSAE, CCNP Security, CCIE Security and/or Security+ certification.
+ Hands on experience with SIEM/SOAR platforms and Microsoft Defender suite
+ OT/ICS Security: Any experience with industrial control systems is preferred (not mandatory)
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .