Devsecops Engineer - Securepay

You might think you know us, but we’re transforming.

In this rapidly evolving commercial landscape, we’re changing too.

And we’re only getting started.

Customer Experience and Digital is at the core of Australia Post’s transformation. That’s why our teams of engineering, development and design specialists are challenged, supported and valued. We provide an environment that ensures we deliver the best: leading edge technologies; a creative, agile approach; a unique breadth of projects and an unexpectedly dynamic, small team culture that feels more like a start-up than a 213-year old icon.

We’re on the lookout for innovative people to join our team.

Customer Experience and Digital?

The purpose of Customer Experience and Digital is to create products that people love and trust, while delivering a sustainable future for Australia Post. The business unit is responsible for managing and transforming our enterprise products, innovation and digital capability. The five key areas that Customer Experience and Digital is responsible for include Customer Services, Digital and Data, Data Science, Identity Products & Services and Payments & Financial Services with Portfolio Strategy, Innovation and Engineering providing technical expertise across these portfolios.

What does the role involve?

• Ensure that application security is an embedded and critical part of the software delivery lifecycle (including during the early stages of projects) regardless of delivery methodology and tool sets used (e.g. static code analysis)
• Perform application vulnerability assessments.
• Perform secure code review across a variety of programming languages
• Create Dashboards and metrics to communicate application security to the security team and wider business
• Identify inherent vulnerabilities and information security risks within systems and applications

We're interested in speaking to anyone with:

• Understanding and experience of web application development and Secure Software Development Life Cycle (Secure SDLC) methodologies and processes
• Comprehensive understanding of OWASP top 10 or similar application security methodologies
• Experience implementing, maintaining and using security tooling including dependency and static code analysis and vulnerability scanning
• Multiple Platform experience. E.g. AWS/Cloud, No-OS, Containers and API functions, Linux, Redhat, CentOS or similar
• Knowledge of Compliance and Security frameworks including PCI-DSS, NIST, ISO27001, ISM, PSPF, and Australian Privacy Principles
• An Industry recognised certification eg: CISSP, GIAC

We believe investing in our people is good business.

That’s why we have a team dedicated to career coaching and support for our employees. And we know that your life outside of work matters. So while we work hard, we also have a culture that promotes a genuine work/life balance. Our teams operate flexibly so please speak to us about what this could look like for you.

Together, our differences make us stronger.

With a reach across Australia and beyond, we’re building a workforce that’s as diverse as the communities we serve. Learn more about how we're supporting inclusion at Australia Post, here. If you require adjustments at any stage of the recruitment process, please reach out to the Talent Acquisition Diversity Team at inclusivecareers@auspost.com.au.

Australia Post welcomes applications from Aboriginal and/or Torres Strait Islanders. Check out this short video to find out how we acknowledge and pay our respects to the Traditional Custodians of the land we operate on.

Ready to join the transformation of Australia Post?

Click , to help shape our tomorrow.