Application Security Analyst

As one of Australia's largest profit-for-members superannuation funds, we always remember whose money it is and whose future we're looking after. Our 1.1m+ members. These are the people who inspire what we do and how we do it, every day.
And we walk our talk, inside as well as out. That care and inclusion, and a focus on better futures, also extends to the people who work at Aware Super. We are proud of our well-resourced and successful development and wellbeing programs, available to all our staff.

But don't take our word for it, the 2023 AFR BOSS Best Places to Work, 2023 Money Magazine's Best and Canstar's Best Value Super Fund in Australia awards back these claims. And while it's nice to be recognised, we don't do it for the accolades. We work to help everyone get more from their super, so they can get more for their future.

Sound good? Learn more about us and what we do at https://awaresuper.com.au

Your New Role

As an Application Security Analyst, you will play a pivotal role in enhancing the security posture of our organization by integrating security practices seamlessly into our DevOps workflows. You will collaborate closely with cross-functional teams to ensure that security is embedded throughout the software development lifecycle, from design to deployment. Additionally, you will provide assistance with Identity and Access Management (IDAM) user access reviews to ensure compliance and minimize security risks.

Some of your responsibilities will include:

• Collaborate with DevOps teams to integrate security practices into CI/CD pipelines and development workflows
• Conduct security assessments and audits to identify vulnerabilities and provide recommendations for remediation
• Implement automated security checks and monitoring tools to detect and mitigate security threats in real-time
• Provide guidance and training to DevOps engineers on secure coding practices and security best practices
• Assist with Identity and Access Management (IDAM) user access reviews to ensure compliance and minimise security risks
• Ensure compliance with security frameworks and standards, such as OWASP, NIST, DSOMM, etc
• Safeguard intellectual property within SecDevOps projects and mitigate the risk of unauthorised access or theft

As our ideal candidate you will have at least 5 years of advanced IT hands-on skills with a minimum of 2 years of DevOps integration work experience.

In addition, you will have:

• Bachelor's degree in Computer Science, Information Security, or related field
• Familiarity with cloud platforms and services (e.g., Azure, AWS, Google Cloud) and their security features
• Proficiency in using DevOps tools such as CI/CD pipelines and configuration management tools
• Experience with security testing tools and practices, including SAST, DAST, IAST, and WAF
• Understanding of networking and security concepts, such as firewalls, intrusion detection/prevention systems (IDS/IPS), and encryption
• Knowledge of security frameworks and standards, such as OWASP, NIST, DSOMM, etc
• Practical experience with Identity and Access Management (IDAM) systems and user access reviews
• Excellent communication and collaboration skills, with the ability to work effectively in cross-functional teams
• Relevant certifications such as Certified DevOps Security Professional (CDSP), or Certified Cloud Security Professional (CCSP) - Desirable;
  • Experience in delivering training and workshops across security topics (Desirable)

We understand that not everyone works in the same ways. We offer flexibility so that you can perform your role at your best.

We love working at Aware Super because our hard work is rewarded by:

• A culture of career growth and development, backed by a commitment to internal career mobility
• Abundant well-being offerings like a health & fitness reimbursement, work from home technology reimbursement, salary continuance insurance and organisation-wide meeting free zones
• Career defining opportunities such as high-impact projects to scale our business and industry leading products and services development

At Aware Super, we believe that diversity of thought, background and experience creates better outcomes for our members and communities and a stronger sense of belonging for our people. We value a diverse workplace and strongly encourage women, Aboriginal & Torres Strait Islander people, people with cultural and linguistic diversity, LGBTQIA+ individuals, people with disabilities, and mature-age individuals to apply. We are proud to be consistently recognised as an Employer of Choice for Gender Equality and our CEO, Deanne Stewart, is a Pay Equity Ambassador.

Applicants must have the right to work in Australia and will be subject to police and bankruptcy checks.