XPT Software Australia Pty Ltd | Contract
Cloud Security EngineerBrisbane City, Australia | Posted on 06/19/2023
- XPT SoftwareAustralia PTY Ltd, incorporated in 2016, is a Software Services company
- XPT works with topclients across Australia in Banking, Insurance, Telecom,Retail, Energy, Mining and Manufacturingdomains.
- We have 120+technocrats in Australia working at our clientlocations.
- XPT SoftwareAustralia is part of group companies which has globalpresence across India & Europe.
- We have served100+ clients globally, fulfilling their onsite-offshoreneeds.
The focus of thisrole is to provide subject matter expertise on cybersecurity standards andrequirements for delivery of new or maintaining existing capabilities. Thecandidate will develop, publish and monitor compliance of cybersecuritystandards, reference architecture and guidelines for clients applications andcloud deployments. In this role you’ll be working closely with various teamswithin Technology to modify or uplift Cybersecurity standards, referencearchitecture and guidelines based on emerging threats.
The candidate willlead technical security assessment product design documentation and collaboratewith product teams to identify mitigating controls. This role can be based inBrisbane, Perth, or Adelaide
Responsibilities
- Development and execution of the enterprise-wideapplication and data security program and associated performance metrics.
- Review design documents, identify and communicatepotential cybersecurity gaps to project teams for remediation
- Apply cybersecurity and privacy principles toorganizational requirements (relevant to confidentiality, integrity,availability, authentication, and non-repudiation).
- Lead risk identification efforts andcommunication of the risks and mitigating controls to stakeholders tomanage cybersecurity risks within the organization
- Research the industry’s best practices and vendor’scybersecurity capabilities to mitigate emerging threats
- Provide application security services includingapplication security scans, code reviews to ensure secure codedevelopment, DevSecOps support, and cloud asset vulnerability management
- Development and maintenance of the Cloud SecurityPosture Management capability for secure hosting of applications.
- Write position papers on cybersecurity topicssuch as cloud, application, and/or data security
- Act as an escalation point for the first-level SOC and Cloud Security Governance teams
About You
As the successfulcandidate you will possess the following:
- 10 years of relevant experience in the industry(Mining, Resources, Banking or Telco), domain areas (Secure-by-DesignApplication Development, DevSecOps, Application Security, Cloud Security).
- Certified as a Cyber Security Professional(CISSP, CISM preferred or equivalent)
- Cloud Cybersecurity certifications (Azurepreferred or AWS equivalent)
- Understanding of industry regulatory andcompliance requirements like ISM, NIST and ISO27001
- Expert level in configuring and utilizingcomputer protection components (e.g., hardware firewalls, servers,routers, as appropriate) in general but also in particular forapplications, M365 and Azure/AWS cloud environments
- Prior experience as cloud engineer or architectbuilding and implementing cloud technology in large scale environmentsfavorable