Address
SalaryEmployment Type Permanent
Closing Date 1 Feb 2024 11:59pm
Job Title Senior Cloud Security Engineer
Job Summary
Job Description
Connect with Telstra
We’re all about helping our customers connect faster, better and smarter. And that’s where you come in, to help us realise our purpose to build a connected future so everyone can thrive.
Here’s what you can expect from us:
Flexible working. Wherever you live, choose where, when, and how you work so you can be at your best.
There when life happens. From Gender Affirmation Leave to Telstra’s Additional Leave Day, we give you time to spend away from work when you need it most.
Pay for performance. We recognise outstanding contributions through our competitive incentive programs.
Parental Leave. A gender-equal policy for all parent/s so you can choose how and when you take your leave (16 weeks full pay or 32 weeks half pay). Receive superannuation contributions on paid and unpaid parental leave.
Unlimited learning. Level up your skills with access to 17,000 learning programs. Learn ‘on the job’ and achieve university credits towards degrees and Masters programs.
Global presence. With a global presence across 22 countries, there are many opportunities to work where we do business.
Extra perks. Receive 25% off Telstra products and services, plus unlock exclusive discounts from over 240 brands and partners.
About the team
As part of Global Networks & Technology, you will manage our world-class network covering Australia and connecting businesses globally. Work with leading technology and change the way we do IT to meet our critical business needs.
Your work will expose you to innovative thinking, technologies and global best practice. As we grow, you'll grow, and this will extend onto building your own valuable talents and skills here with us.
About the Role
The Senior Cloud Security Engineer will focus on Attack Surface Management and is responsible for activities related to threat management, with the goal to ensure comprehensive visibility of Telstra’s attack surface and vulnerabilities.
Key Responsibilities:
This is how you will bring the purpose of your role to life:
Follows Attack Surface management processes to continuously monitor and improve visibility of the attack surface in order to detect anomalies faster and reduce incidences of cyber-attacks.
Perform verification/validation testing for vulnerabilities in external-facing web sites, web applications, and services; demonstrate exploitation steps and verify remediation/fixes.
Engage with business stakeholders to ensure they fully understand their Attack Surface and helps them identify prioritisation of vulnerabilities.
Execute daily operations of the Attack Surface Management program, including the interpretation of scanning results.
Assist Cyber teams and stakeholders in the identification of internal and external risks based on scanning results.
Assist in the attribution of findings to appropriate business owner.
Assist in the documentation and standardisation of process and procedures related to Attack Surface Management.
Aggregating vulnerability data across technologies such as endpoints, servers, and cloud and interpreting and presenting risk.
About you
Essential Requirements:
Understand the end-to-end Cloud and Attack Surface Management metrics process including metrics collection, tracking and reporting.
Cloud Security Certificate, CISSP.
Familiarity with common web vulnerabilities including: XSS, XXE, SQL Injection, Deserialization Attacks, Path Traversal Attacks, Remote Execution Flaws, and Authentication Flaws.
Understanding of common web application frameworks and web-based APIs.
Experience with one or more scripting languages such as Bash, Python, Perl, PowerShell, etc.
AWS, Azure or GCP Security Specialty and/or Architect Certificate.
Expert knowledge of Cloud infrastructure, security architectures, and standards (TOGAF/SABSA).
Deep technical knowledge of Amazon Web Services, Azure and GCP as well as automation and orchestration tools and platform.
Experience working on Kubernetes or containerised environment.
5 years of experience in information security vulnerability management role in a large scale and complex environments.
Not required but highly desirable:
Bachelor’s degree in engineering or IT highly desirable.
3+ years’ experience in security design.
Certifications in Cloud Architecture.
Hands-on experience in a corporate environment, running platforms at scale.
Containers and/or Kubernetes certification.
DevOps certification.
Professional security management certification strongly desirable, such as CISSP or CISM.
Knowledge of common information security management frameworks, such as ISO/IEC 27001, COBIT, and NIST, including 800-53, the Cybersecurity Framework and CIS benchmark.
Network security experience: Firewall, IDS/IPS, WAF, DDoS protection, SIEM.
Knowledge of Network routing and security protocols such as BGP, IGRP or OSPF, NAT, NAC, ACL,
Knowledge of Application layer protocols, HTTP methods, REST API, Traffic Load balancing.
Database knowledge: generic SQL is fine, MySQL and PostgreSQL
If you are passionate to succeed as part of an agile and experienced team, we welcome you to apply!
We encourage applications from people of all abilities and backgrounds - including Aboriginal and Torres Strait Islander peoples, the LGBQTI+ community, linguistically diverse, and people living with disability. When you apply, you can choose to note the pronouns you use and /or any reasonable adjustments needed to take part equitably during the interview process.
www.telstra.com.au/careers/diversity-and-inclusion or email us at DisabilityandAccessibility@team.telstra.com noting your preferred method of contact.
