Architect / Security Operation

Title:- Solution Architect/Security Operation's Location:- Sydney Length:- Permanent Purpose The Solutions Designer/Security Operation's will assist the Solutions Architect in developing and enhancing the framework and tools for continuous integration, deployment and delivery of enhanced procedures, tools and behaviours. Drive scalability, automation, and innovation within the Security operations space and support software engineers by building best practice procedures and techniques into our environment. Working closely with the internal development team, product owners, external support vendors and MLA IT (corporate IT team) across projects and BAU. Be a key element in the design and review of the infrastructure architecture improvement program. Drive enhancements and operational efficiencies in the resolution of complex technical issues across our digital platforms (including AWS Cloud, Infrastructure, Applications and Databases), following appropriate issue and problem management processes. Key Accountabilities Create, develop, and implement solutions to address infrastructure and security requirements. Identify the needs for building automation, designing, and implementing CICD solutions. Consult on DevSecOps requirements from diverse applications/line of business partners. Create plug-and-play/reusable solutions and patterns for CICD pipelines. Create, develop, and implement automation and system integration for various build platforms. Publish and disseminate CICD best practices, patterns, and solutions. Build or maintain CICD building blocks and shared libraries proactively for app and development teams to enable quicker build and deployment. Design action plans to address the CICD platform/tools/solutions' shortcomings and difficulties. Actively participate in bridging calls with team members and contractors/vendors to prevent or quickly address problems. Troubleshoot, identify and fix problems in the Security operation's domain Ensure incident tracking tools are updated in accordance with established norms and processes, gathering all essential data and document any discoveries and concerns. Identify management concerns and problems, assess them, and offer prompt solutions and/or escalation. Align with technological Systems/Software Development Life Cycle (SDLC) processes and industrystandard service management principles (such as ITIL/ITSM) Create and publish engineering platforms and solutions. Development and implementation of best practice security tools, procedures, guidelines,behaviours, and culture. Responsible for the architecture of automation of repetitive and alert resolution tasks Contribute to securing infrastructure to ensure data and infrastructure safety from malicious and accidental harm. Work with the DevOps team to ensure effective security baselines, IT controls, audit compliance and penetration tests are met and remediated across all organisational environments. Cloud and virtual infrastructure provisioning and system administration include deploying and maintaining the servers, storage, and networking resources required to host applications. Provide and share a broad knowledge as a DevSecOps mentor to support, developers and architects. Provide assistance with out of hours support coverage of the system by participating in a shared on-call roster if required Provide assistance with all support through ISC's service desk ticketing system, and provide technical solutions to production system issues Identify and report on new and emerging opportunities to exploit technology and automation Compliance with the requirements of the company quality management system, including all relevant procedures and work instructions Comply with MLA's policies and procedures in workplace health and safety as applicable to self, other Workers and all activities within area of responsibility and control. Essential Qualifications / Skills Comprehensive technical expertise in a variety of Security toolkits, including Ansible, Jenkins, Artifactory, Jira, Black Duck, Terraform, Git/Version Control Software, or comparable technologies. Familiarity with information security frameworks and standards Knowledge of DevOps Automation (TerraFrom, GitHub, GitHub Actions) Knowledge of Prisma cloud, SIEM, SOC, Nesus, Crowd strike or similar services Familiarity with API Security, Container Security, AWS Cloud Security Knowledge of PCI-DSS, HIPPA, SOX, GDPR, and CCPA Standards and Policies and the associated certification and audit processes Familiarity with Amazon AWS policy, configuration, and security management tools and Networking services Experience with security automation and machine learning Proven capacity for thinking leadership and a highly creative problem-solver Excellent analytical and interpersonal skills Ability to express technical information clearly at different organizational levels Advanced Windows Server Management and Troubleshooting Good experience in Windows Clustering Management and Troubleshooting Experience in Windows Active Directory, user management, group policies etc Very good work experience on managing and troubleshooting Linux OS Good work experience in automation using containerization and orchestration technologies like docker, AWS ECS etc Experience on Advanced IIS Management and Troubleshooting AWS Certification, emphasis on DevSecOps would be good to have For more information please contact Sarah Brown