Devsecops Engineer

About the Role : In this newly created role and working closely with both the Engineering Team and Infrastructure team, the DevSecOps Engineer will be responsible for ensuring security practices are embedded into every stage of the software development lifecycle (SDLC) and ensuring applications and infrastructure are secure and managed in an efficient manner across our organisation. Responsibilities will include :

Security Integration in Development

• Embed security early into the development pipeline by collaborating with developers and using automated tools to mitigate vulnerabilities.
• Automate security checks in CI / CD pipelines using tools to detect issues in code, dependencies, and infrastructure configurations.
• Ensure security standards and best practices are met and act as a security advisor to developers, providing guidance and training on secure coding practices.

Cloud Platform Management

• Design, implement, and maintain solutions for cloud environments (AWS, Azure, GCP) using Infrastructure as Code (IaC) principles.
• Secure cloud infrastructure by identifying and resolving misconfigurations, vulnerabilities, and potential threats.
• Create and manage pipelines to standardise deployment of cloud solutions in conjunction with the development team.
• Monitor cloud environments and respond to incidents or security alerts promptly.

Incident Response and Threat Management

• Respond to security incidents, performing root cause analysis and driving remediation efforts.
• Continuously assess and enhance security processes to defend against emerging threats.

Key requirements / skills :

• Proven senior level background / experience in a DevSecOps or related role.
• Strong experience and understanding of cloud security and cloud platforms (Ideally Azure).
• Strong experience with Infrastructure as code and pipeline creation / management including security.
• Sound proficiency in Azure DevOps management and Terraform.
• Experience with APIM, Front door, App services.
• Expertise in container security and related tools (e.g., Jenkins, Docker, Kubernetes, Ansible).
• Nice to have : Good knowledge of Datafactory components, SQL Databases, and Linux servers.

Who we are : UP Education is a leading Australasian dual-sector education group, delivering foundation, vocational and higher education to domestic and international students. At UP Education, we are on a mission : to elevate and empower students to unlock their potential. Known for our agility, and responsiveness to the changing world. What sets us apart from other tertiary providers? It is, quite simply, our people. Our teams come from a wide range of educational and cultural backgrounds and offer a broad diversity of professional experience. But we all have one thing in common – we are all firm believers in the power of education to transform lives and we all have the drive to make a significant impact in the communities with which we work. We believe learning should be defined by the exceptional and at UP Education we have an ongoing commitment to the development of our staff. Why work with us :

• Flexible working with a hybrid work arrangement balancing between home and our office based in central Ponsonby.
• Supportive team environment with ongoing commitment to your training and development.
• Fantastic opportunity to be part of an energising team and growing company.

Our application process : To apply for this position, please submit your resume and a cover letter detailing your relevant experience and interest in the role. We are an equal opportunity employer. As part of our commitment to equity, we work to ensure a fair and consistent interview process. We celebrate diversity and we are committed to an inclusive work environment. #J-18808-Ljbffr