This organisation operates a large, complex technology environment with deep cloud adoption, multiple platforms, and real engineering scale. As part of a wider ASX group of companies, Security uplift is needed and this engineering role is key.
The cyber function is moving deliberately toward engineering-led security: automation over manual effort, embedded controls over bolt-ons, and design decisions that stand up in production.
This newly created role will be pivotal in helping to both design security controls and implement security tools in a fast moving environment.
it's a high impact role, that requires outstanding stakeholder engagement skills and facing off to the business as well as being deep in the technical trenches.
This is a 12 month fixed term contract to begin with.
The Role:
- Designing and implementing security controls across cloud environments, with a focus on durability and scale
- Contributing to security architecture and design decisions, then taking responsibility for delivery
- Building and automating controls using infrastructure-as-code and scripting, not point-and-click tooling
- Embedding security into engineering workflows, CI/CD pipelines, and platform teams
- Acting as a senior technical voice during incidents, investigations, and complex security problems
This is a hands-on engineering role with architectural influence, not an advisory or oversight position.
The Experience Required:
- Proven experience securing Azure, AWS or GCP environments in a genuinely hands-on capacity
- Strong automation and IaC capability (Terraform or equivalent), with code you’ve written and owned
- Background in engineering-led security roles, not purely operational or governance functions
- Comfort operating across design, build, and remediation
- The judgement to balance security outcomes with delivery reality in complex environments
For more information contact cwhyte@decipherbureau.com