26 Software Security jobs in Australia

Microsoft Azure operates one of the largest Internet Protocol (IP) networks in the world, connecting millions of servers across hundreds of data centers to customers globally. This infrastructure supports a wide range of services and requires robust security measures to ensure reliability and trust.
The **Azure Networking Security team** plays a critical role in safeguarding the routers and switches that form the backbone of this network. The team includes software engineers and network engineers who are responsible for automating and deploying security-related changes across network devices within Azure Networking.
As a **Senior Software Engineer** in Azure Networking, you will play a pivotal role in developing solutions that directly supports Microsoft's mission-critical infrastructure by enhancing the reliability, integrity, and security posture of Azure's global network. Engineers collaborate across multiple domains to deliver impactful solutions that protect Azure's backbone and enable secure cloud operations at scale.
Microsoft's mission is to empower every person and every organisation on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realise our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
**Responsibilities**
- Collaborates with appropriate stakeholders to determine user requirements for a scenario.
- Drives identification of dependencies and the development of design documents for a product, application, service, or platform.
- Creates, implements, optimises, debugs, refactors, and reuses code to establish and improve performance and maintainability, effectiveness, and return on investment (ROI).
- Leverages subject-matter expertise of product features and partners with appropriate stakeholders (e.g., project managers) to drive a workgroup's project plans, release plans, and work items.
- Acts as a Designated Responsible Individual (DRI) and guides other engineers by developing and following the playbook, working on call to monitor system/product/service for degradation, downtime, or interruptions, alerting stakeholders about status and initiates actions to restore system/product/service for simple and complex problems when appropriate.
- Proactively seeks new knowledge and adapts to new trends, technical solutions, and patterns that will improve the availability, reliability, efficiency, observability, and performance of products while also driving consistency in monitoring and operations at scale.
- Applies best practices to build code based on well-established methods and secure design principles while also applying best practices for new code development and formal validation of security invariants. Drives product development and scaling to customer requirements and applies best practices for meeting scaling needs and performance expectations and security promises.
**Qualifications**
**Required Qualifications:**
+ Bachelor's Degree in Computer Science or related technical field AND 4+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Pythono OR equivalent experience.
**Other Requirements:**
+ Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: 
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.
**Preferred Qualifications:**
+ 1+ years experience in Python development, including experience designing and building scalable systems, automation frameworks, or network-related tooling.
+ 1+ years experience with common network protocols, such as TCP, BGP, IP routing, IPv6 etc., experience on networking router configuration.
+ 1+ years experience with network security.
#azurecorejobs
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Microsoft Azure operates one of the largest Internet Protocol (IP) networks in the world, connecting millions of servers across hundreds of data centers to customers globally. This infrastructure supports a wide range of services and requires robust security measures to ensure reliability and trust.
The **Azure Networking Security team** plays a critical role in safeguarding the routers and switches that form the backbone of this network. The team includes software engineers and network engineers who are responsible for automating and deploying security-related changes across network devices within Azure Networking.
As a **Senior Software Engineer** in Azure Networking, you will play a pivotal role in developing solutions that directly supports Microsoft's mission-critical infrastructure by enhancing the reliability, integrity, and security posture of Azure's global network. Engineers collaborate across multiple domains to deliver impactful solutions that protect Azure's backbone and enable secure cloud operations at scale.
Microsoft's mission is to empower every person and every organisation on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realise our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
**Responsibilities**
- Collaborates with appropriate stakeholders to determine user requirements for a scenario.
- Drives identification of dependencies and the development of design documents for a product, application, service, or platform.
- Creates, implements, optimises, debugs, refactors, and reuses code to establish and improve performance and maintainability, effectiveness, and return on investment (ROI).
- Leverages subject-matter expertise of product features and partners with appropriate stakeholders (e.g., project managers) to drive a workgroup's project plans, release plans, and work items.
- Acts as a Designated Responsible Individual (DRI) and guides other engineers by developing and following the playbook, working on call to monitor system/product/service for degradation, downtime, or interruptions, alerting stakeholders about status and initiates actions to restore system/product/service for simple and complex problems when appropriate.
- Proactively seeks new knowledge and adapts to new trends, technical solutions, and patterns that will improve the availability, reliability, efficiency, observability, and performance of products while also driving consistency in monitoring and operations at scale.
- Applies best practices to build code based on well-established methods and secure design principles while also applying best practices for new code development and formal validation of security invariants. Drives product development and scaling to customer requirements and applies best practices for meeting scaling needs and performance expectations and security promises.
**Qualifications**
**Required Qualifications:**
+ Bachelor's Degree in Computer Science or related technical field AND 4+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Pythono OR equivalent experience.
**Other Requirements:**
+ Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: 
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.
**Preferred Qualifications:**
+ 1+ years experience in Python development, including experience designing and building scalable systems, automation frameworks, or network-related tooling.
+ 1+ years experience with common network protocols, such as TCP, BGP, IP routing, IPv6 etc., experience on networking router configuration.
+ 1+ years experience with network security.
#azurecorejobs
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Microsoft Azure operates one of the largest Internet Protocol (IP) networks in the world, connecting millions of servers across hundreds of data centers to customers globally. This infrastructure supports a wide range of services and requires robust security measures to ensure reliability and trust.
The **Azure Networking Security team** plays a critical role in safeguarding the routers and switches that form the backbone of this network. The team includes software engineers and network engineers who are responsible for automating and deploying security-related changes across network devices within Azure Networking.
As a **Senior Software Engineer** in Azure Networking, you will play a pivotal role in developing solutions that directly supports Microsoft's mission-critical infrastructure by enhancing the reliability, integrity, and security posture of Azure's global network. Engineers collaborate across multiple domains to deliver impactful solutions that protect Azure's backbone and enable secure cloud operations at scale.
Microsoft's mission is to empower every person and every organisation on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realise our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
**Responsibilities**
- Collaborates with appropriate stakeholders to determine user requirements for a scenario.
- Drives identification of dependencies and the development of design documents for a product, application, service, or platform.
- Creates, implements, optimises, debugs, refactors, and reuses code to establish and improve performance and maintainability, effectiveness, and return on investment (ROI).
- Leverages subject-matter expertise of product features and partners with appropriate stakeholders (e.g., project managers) to drive a workgroup's project plans, release plans, and work items.
- Acts as a Designated Responsible Individual (DRI) and guides other engineers by developing and following the playbook, working on call to monitor system/product/service for degradation, downtime, or interruptions, alerting stakeholders about status and initiates actions to restore system/product/service for simple and complex problems when appropriate.
- Proactively seeks new knowledge and adapts to new trends, technical solutions, and patterns that will improve the availability, reliability, efficiency, observability, and performance of products while also driving consistency in monitoring and operations at scale.
- Applies best practices to build code based on well-established methods and secure design principles while also applying best practices for new code development and formal validation of security invariants. Drives product development and scaling to customer requirements and applies best practices for meeting scaling needs and performance expectations and security promises.
**Qualifications**
**Required Qualifications:**
+ Bachelor's Degree in Computer Science or related technical field AND 4+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Pythono OR equivalent experience.
**Other Requirements:**
+ Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: 
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.
**Preferred Qualifications:**
+ 1+ years experience in Python development, including experience designing and building scalable systems, automation frameworks, or network-related tooling.
+ 1+ years experience with common network protocols, such as TCP, BGP, IP routing, IPv6 etc., experience on networking router configuration.
+ 1+ years experience with network security.
#azurecorejobs
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Snap Inc ( is a technology company. We believe the camera presents the greatest opportunity to improve the way people live and communicate. Snap contributes to human progress by empowering people to express themselves, live in the moment, learn about the world, and have fun together. The Company's three core products are Snapchat ( , a visual messaging app that enhances your relationships with friends, family, and the world; Lens Studio ( , an augmented reality platform that powers AR across Snapchat and other services; and its AR glasses, Spectacles ( .
Snap Engineering ( teams build fun and technically sophisticated products that reach hundreds of millions of Snapchatters around the world, every day. We're deeply committed to the well-being of everyone in our global community, which is why our values ( are at the root of everything we do. We move fast, with precision, and always execute with privacy at the forefront.
We're looking for a Security Engineer to join our Detection and Response (D&R) team!
+ **What you'll do:**
+ Design, pilot, and implement logging and alerting systems to detect malicious activity on Snap Inc.'s endpoints, infrastructure, networks, and cloud environments
+ Build tools and devise automation strategies to improve Snap Inc.'s ability to hunt threats and respond to intrusions
+ Investigate events generated by the alerting pipeline and triage potential incidents
+ Work closely with multiple Snap Inc. teams during incidents and drive response efforts
+ Identify, analyze, fingerprint and build threat intelligence on trends and developments in adversary tactics, techniques, and procedures (TTPs) for sophisticated threat actors spanning APTs and cybercrime.
+ **Knowledge, Skills & Abilities:**
+ Proven experience in one or more of the following detection and response areas: digital forensics, malware analysis, incident management, host/network intrusion detection, threat intelligence
+ Strong development skills in Python and/or Go
+ Advanced knowledge of operating system internals, and a core competency in two or more of the following: macOS, Windows, Linux, Kubernetes, Amazon Web Services, and Google Cloud Platform
+ **Minimum Qualifications:**
+ Bachelor's Degree in a relevant technical field such as computer science or equivalent years of practical work experience
+ 2+ years of post-Bachelor's software development experience; or Master's degree in a technical field + 1+ year of post-grad software development experience; or PhD in a relevant technical field
+ **Preferred Qualifications:**
+ Demonstrated knowledge in threat hunting and developing logic to automate threat detection and incident response
+ Familiarity with cloud-based services and infrastructure (Google Cloud, Workspace, AWS, etc.)
+ Excellent verbal and written communication skills, with high attention to detail
+ Practical experience in a BeyondCorp model
+ Work record of collaborating with internal and external stakeholders at all levels of a company
If you have a disability or special need that requires accommodation, please don't be shy and provide us some information ( .
"Default Together" Policy at Snap: At Snap Inc. we believe that being together in person helps us build our culture faster, reinforce our values, and serve our community, customers and partners better through dynamic collaboration. To reflect this, we practice a "default together" approach and expect our team members to work in an office 4+ days per week.
At Snap, we believe that having a team of diverse backgrounds and voices working together will enable us to create innovative products that improve the way people live and communicate. Snap is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification, in accordance with applicable federal, state, and local laws. EOE, including disability/vets.
Our Benefits ( : Snap Inc. is its own community, so we've got your back! We do our best to make sure you and your loved ones have everything you need to be happy and healthy, on your own terms. Our benefits are built around your needs and include paid parental leave, comprehensive medical coverage, emotional and mental health support programs, and compensation packages that let you share in Snap's long-term success!
**A Decade of Snap ( **:** Learn about our origin story, values, mission, culture of innovation, and more.
**CitizenSnap ( **:** In our third annual CitizenSnap Report, we demonstrate progress towards our environmental, social, and governance (ESG) goals, and we lay out our plans looking forward.
**The DEI Innovation Summit ( **:** Watch highlights from the 2nd annual DEI Innovation Summit, which brings together thought leaders and DEI experts for a day of courageous conversations to enable bold action.
**Snap News ( **:** Stay up to date on the latest and greatest product and innovation news at Snap
Applicant and Candidate Privacy Policy (

Description
Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure.
AWS Security is looking for a Security Systems Engineer to play a pivotal role in ensuring the security and integrity of our systems and infrastructure. You will work closely with our security team to implement and maintain robust security measures that adhere to Australian Government security requirements, including the Protective Security Policy Framework (PSPF) and the Information Security Manual (ISM).
Key job responsibilities
Key responsibilities may include:
* Assist in implementing and maintaining security measures to safeguard systems and infrastructure, gaining valuable hands-on experience in foundational security practices.
* Support security assessments and audits to identify vulnerabilities and risks, learning alongside experienced professionals to enhance risk mitigation skills
* Work closely with cross-functional teams to contribute ideas and support the design and deployment of security solutions, gaining exposure to collaborative project environments
* Learn to monitor security systems and assist in responding to security incidents under guidance, developing essential incident response skills.
* Contribute insights to the development of security policies and standard operating procedures, gaining exposure to policy-making processes and industry standards.
* Offer support and guidance to internal teams on security best practices, learning from experienced mentors while assisting in implementing security measures effectively.
Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
A typical day for a Security Systems Engineer starts with reviewing security logs and alerts to identify potential threats, gaining valuable exposure to real-world security monitoring practices. Throughout the day, they collaborate closely with the security team to analyze security incidents and contribute to the development of response strategies, learning from experienced professionals in incident response. Additionally, they conduct security assessments on new systems and applications, honing their skills in evaluating security risks and vulnerabilities. In meetings with cross-functional teams, they actively participate in discussions on security requirements and initiatives, gaining insights into the broader organizational security landscape. Finally, they dedicate time to researching emerging security threats and technologies, staying current with industry trends and continuously expanding their knowledge base. This hands-on experience and exposure to various aspects of security operations are essential for their growth and development in the field.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
The team is comprised of security professionals with a cross section of national security and private sector experience, providing a range of perspectives required for creative problem solving. We value diversity of thought, creativity, and a strong Bias for Action and Earn Trust. We believe that there are no "perfect" security solutions and we develop and iterate using a continuous improvement process.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Basic Qualifications
- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience
- Bachelor's degree in computer science or equivalent
- Knowledge of networking protocols such as HTTP, DNS and TCP/IP
Preferred Qualifications
- 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Experience with AWS products and services
- Experience with programming languages such as Python, Java, C+Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Microsoft's Cloud Operations & Innovation (CO+I) is the engine that powers our cloud services. We are seeking a skilled and proactive Cybersecurity Engineer with a minimum of 3 years of hands-on experience in security operations, threat detection, and incident response. This role is ideal for professionals looking to deepen their expertise across SIEM/SOAR platforms, Microsoft Defender solutions, cloud security, and OT/ICS environments, while contributing to a high-performing security team.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Do you want to empower billions across the world? Come and join us in CO+I and be at the forefront of the action!
**Responsibilities**
**Responsibilities:**
+ Lead investigations into security incidents and coordinate response efforts across IT and OT environments.
+ Develop, tune, and maintain detection rules and threat models within SIEM platforms.
+ Design and implement automated workflows using SOAR tools to streamline incident response.
+ Collaborate with cross-functional teams to improve threat visibility and reduce response times.
+ Support the integration and optimization of Microsoft Defender for Endpoint, Defender for Cloud, Defender for IoT and Sentinel.
+ Contribute to cloud security initiatives, including configuration reviews, logging, and compliance assessments.
+ Assist in securing OT/ICS environments through segmentation, monitoring, and protocol analysis.
+ Contribute to knowledge sharing and documentation.
**Other**
+ Embody our culture ( and values ( .
**Qualifications**
**Required Qualifications:**
+ 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
+ OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
**Background Check Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
While not required, we also look for the following **Preferred Qualifications:**
+ CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, PCCSE, PCNSE, PCSAE, CCNP Security, CCIE Security, CySA, CASP+ and/or CompTIA Security+ certification.
+ Relevant cloud infra certifications such as SC-200, AZ-500, or equivalent
+ Strong background in firewalls or intrusion detection or prevention systems
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Description
This position can also be based in Sydney, Australia.
We are looking for an experienced Principal Security Engineer to join the Security team in Australia. You will be on a team responsible for conducting both pre and post launch testing, offensive campaigns, emergent threat testing, creating/maintaining automated threat emulation solutions, and helping security and service teams add offensive insight to their development, deployment, monitoring, and response processes. This team partners with the larger Security organization and Service teams to continuously validate security throughout the service/system lifecycle.
You will be an expert across multiple domains such as cyber security; threat, vulnerability and risk assessments (TVRA), security tools (e.g. Splunk, Crowstrike, etc.), application of security frameworks (e.g. ISM, NIST, etc.) and/or implementation and monitoring of cyber security controls (i.e. detection, protection, alerting, etc.) and will be sought out for advice on a range of technical and business related issues. Your role will help ensure that our systems and processes are secured against the latest threats and you will lead security testing of large Amazon projects while setting standards and defining best practices for the Security team. You will proactively share knowledge across the Amazon community and will be a critical member of the organization in one or more of the core areas of security.
Key job responsibilities
* Offering recommendations and fine-tuning findings to enhance threat mitigations, ensuring robust security measures are in place.
* Setting a high standard and generating high-quality testing plans and reports, striving for excellence in security testing procedures.
* Conducting offensive security testing and engaging in ongoing vulnerability research to proactively identify potential risks.
* Systematically identifying vulnerabilities and meticulously tracking them to facilitate timely remediation efforts.
* Staying ahead of emerging threats by continuously testing systems and applications for vulnerabilities that may arise.
* Developing and maintaining automated solutions for emulating threats, enhancing efficiency and accuracy in threat detection.
* Providing security training and conducting outreach sessions with internal development teams to raise awareness and foster a security-conscious culture.
* Developing comprehensive security guidance documentation, including policies, procedures, and best practices, to serve as a reference for the organization.
* Designing and building security tools tailored to the organization's needs, enhancing the overall security posture.
* Delivering meaningful security metrics to stakeholders and continuously improving the metrics for better insight into the security landscape.
Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
Engineers in this role must show exemplary judgment in making technical trade-offs between short versus long term security and business goals. They must also demonstrate resilience and navigate difficult situations with composure and tact. Conflicts should be addressed by listening, finding the best way forward and persuading one's colleagues. Successful engineers in this role will regularly analyze their own performance with a critical eye. A broad understanding of the business and its interconnections is required. This position will also provide training, advice, and mentorship to other engineers.
Basic Qualifications
* Minimum 10+ years of experience in delivering cyber security solution to large enterprises or to Government customers.
* Proven ability to provide technical and strategic oversight for a high-performing team of security professionals.
* Demonstrated experience creating effective security strategies that balance prevention and detection, drive risk reduction and mitigation.
Preferred Qualifications
* Bachelor's degree in Computer Science or Engineering* Masters' degree or PhD in Cybersecurity or related domain.
* Worked on large-scale cloud programs to deliver security outcomes.
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Senior Product Security Engineer
Job Description
**About CoStar Group**
CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world's real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives.
We have been living and breathing the world of real estate information and online marketplaces for over 35 years, giving us the perspective to create truly unique and valuable offerings to our customers. We've continually refined, transformed, and perfected our approach to our business, creating a language that has become standard in our industry, for our customers, and even our competitors. We continue that effort today and are always working to improve and drive innovation. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.
**About Domain**
Domain is a leading property technology and services marketplace that is home to one of the largest portfolios of property brands in Australia, including the Domain, Allhomes and Commercial Real Estate (CRE) platforms. In 2025, Domain became part of CoStar Group (NASDAQ: CSGP), a global leader in commercial real estate information, analytics, online marketplaces and 3D digital twin technology. Together, Domain and CoStar Group is dedicated to digitising the world's real estate, empowering all people to discover properties, insights, and connections that improve their businesses and lives.
We're looking for a highly collaborative and deeply technical Senior Product Security Engineer to be a pivotal force in shaping our Application Security (AppSec) future. This is your chance to drive our strategic vision by making security an intrinsic, seamless part of our software development lifecycle.
Reporting to the Group Engineering Manager - Product Security, you will be the crucial link, the advisor, and the implementer working directly with our development teams. You will be instrumental in deploying initiatives from our cutting-edge Application Security Framework and fostering a culture where security is everyone's responsibility.
This position will collaborate with software development teams, DevOps and security to drive and shape the way our employees and engineers build, deploy and operate applications.
This position is located in either Sydney or Melbourne and is in office Tuesday through Thursday with work from home on Monday and Friday.
**Responsibilities**
Success here is measured by your ability to proactively embed security and drive tangible change. You will achieve this by:
+ Leading Security Integration: Champion efforts to fully integrate security into our DevOps processes, promoting a culture of security ownership and awareness across the organization. Work with the software and product teams to help ensure applications are designed and implemented securely during the SDLC.
+ Hands-On Security Mastery: Acting as the primary security advisor, you'll conduct implementation reviews of solution designs, lead crucial threat modeling sessions, and perform hands-on security code reviews.
+ Tooling & Automation: Automate security testing at various stages within the CI/CD pipelines. Consume a variety of application security tools (DAST, SAST, SCA, Credential Scanning, IAC scanning) to secure web applications during development and production run-time. Manage and operate our critical security tools, ensuring maximum efficiency and coverage.
+ Resilience & Compliance: Partnering with GRC to ensure adherence to industry standards and collaborating with Security Operations to provide crucial support during the investigation and response to security incidents.
**Basic Qualifications**
+ Bachelor's degree required from an accredited, not for profit university or college (preferably in Computer Science/Cybersecurity or related field).
+ 5+ years experience in a Product/Application Security or DevSecOps role.
+ A track record of commitment to prior employers or a track record of delivering long-term impact to prior employers.
+ Strong knowledge of DevOps principles and practices, as well as security best practices.
+ Ability to communicate effectively with both cybersecurity and engineering teams.
+ Ability to collaborate across Product, Security, DevOps, Product, and development teams.
+ Proficiency in scripting and automation (e.g., Java, C/C++, C#, Python, JavaScript, PowerShell)
+ Experience with container security (Docker, ECS, Kubernetes) and cloud security (AWS, Azure, or GCP).
**Preferred Qualifications and Skills**
+ Hands-on experience implementing security tools into CI/CD pipelines and IDE interfaces including Static Application Security Testing (SAST) and Static Application Analysis (SCA) solutions.
+ Experience with web application penetration testing and identifying attack chains to evaluate the severity of vulnerabilities.
+ Strong communication skills with both software development and software leadership audiences, including the ability to communicate with different levels of leadership conveying risk and driving urgency for risk remediation.
+ A self-starter who can advance the application security program and follow-through ideas to completion.
+ Experience coordinating with application teams to drive security by design principles.
+ Knowledge of infrastructure operations across databases, network, and system administration.
+ Experience testing modern applications in cloud-native tech stacks.
**Why join us?**
We're the kind of place you can make a real impact, with a workplace culture where you can be you. It's a fun, safe space where you'll always feel you belong. Perks of the role include:
+ Hybrid working;
+ First-rate parental leave;
+ Continuous opportunities to leap, learn and grow in a team that values creativity and innovation;
We don't just talk, we do. Every day we solve property problems for Australians and beyond. We encourage our people to see the possibilities, and turn them into realities.
**What's next?**
We'll give your application the thoughtful attention it deserves and get back to you as soon as possible. If there's a match, one of our recruitment consultants will reach out so keep your phone handy! We're genuinely excited about the chance to work together and make a meaningful impact.
Equity, Diversity and Inclusion at Domain
Domain is enthusiastically and unapologetically committed to fostering an equitable, inclusive work culture which reflects our customers and communities. We are proactively looking for candidates from all lived experiences, including people with disability, and people of all ages, ethnicities, cultures (including Aboriginal and Torres Strait Islander Peoples), faiths, sexual orientations, and gender identities (including trans and non-binary people).
We are committed to providing an equitable recruitment process for people with disability. If you require adjustments during the process we're here to support. If you wish to receive this job advertisement in an accessible format, or have a confidential chat about workplace adjustments, please contact our Equity, Diversity and Inclusion team at or leave a message on and we will get back to you.
CoStar Group is an Equal Employment Opportunity Employer; we maintain a drug-free workplace and perform pre-employment substance abuse testing
CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world's real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives.
We have been living and breathing the world of real estate information and online marketplaces for over 37 years, giving us the perspective to create truly unique and valuable products and services. We've continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry and for our customers. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.
CoStar is committed to creating a diverse environment and is proud to be an equal opportunity workplace and affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. CoStar is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to use or access as a result of your disability. You can request reasonable accommodations by calling or by sending an email to .

It all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today - ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Our intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work. But this is just the beginning of our journey. Join us as we pursue our purpose to make the world work better for everyone.
The Senior Information Security Engineer, as a key member of the Platform Support Administration team, is accountable for the administration, optimization, and continuous improvement of the ServiceNow platform, with a particular emphasis on SecOps applications. This role ensures the platform's stability and performance while aligning with organizational objectives. The individual will collaborate closely with end-users and stakeholders to provide timely and effective support.
**Key Responsibilities:**
+ Lead the day-to-day administration of the ServiceNow platform, including user and group management, access controls, data imports, and platform upgrades.
+ Develop tools in Python, bash, and/or JavaScript to replace manual work and improve customer maintenance experience.
+ Prepare to onboard new ServiceNow products. Provide training and knowledge transfer to the end users.
+ Use broad knowledge and experience of systems administration and networking principles to proactively prevent and address incidents while constantly improving documentation.
+ Participate in escalations and Root Cause Analysis of issues.
+ Configure and maintain core ServiceNow applications such as:
+ ITSM (Incident, Problem, Change, Request)
+ SecOps Applications (Vulnerability Response, Configuration Compliance Security Incident Response)
+ Serve as a lead technical expert for integrations between ServiceNow and third-party systems (e.g., via REST/SOAP APIs, MID servers).
+ Monitor platform health, performance, and security, implementing tuning and hardening measures as needed.
+ Evaluate and apply ServiceNow patches, upgrades, and hotfixes in accordance with release cycles.
+ Provide mentorship and oversight to internal and external teams.
+ Partner with stakeholders across internal Security, Digital transformation and other business units to gather requirements and implement scalable solutions.
**_Due to the nature of the role and regulatory requirements for this role, only candidates who are Australian citizens and on Australia soil can be considered._**
+ Bachelor's degree in computer science, Information Systems, or related field, or equivalent experience.
+ 5+ years of hands-on system administration experience in a complex enterprise environment.
+ Proficiency in scripting languages used in ServiceNow (e.g., JavaScript, GlideScript).
+ Experience with ServiceNow update sets, ACLs, client/server scripts, UI policies, and customizations.
+ Strong understanding of ITIL/ITSM processes.
+ Demonstrated experience managing ServiceNow upgrades and platform migrations.
**Preferred Skills:**
+ ServiceNow Certified System Administrator (CSA) certification.
+ SecOps Applications Specialist Certificate
+ AIOps experience
+ Familiarity with Agile or Scrum delivery methodologies.
+ Experience with automated testing tools in the ServiceNow ecosystem (e.g., ATF).
**Work Personas**
We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here ( . To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service.
**Equal Opportunity Employer**
ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements.
**Accommodations**
We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact for assistance.
**Export Control Regulations**
For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities.
From Fortune. ©2025 Fortune Media IP Limited. All rights reserved. Used under license.