DevSecOps Engineer

This is an exciting opportunity for you to play a pivotal role in shaping the security culture of a company that operates across New Zealand, Australia, South Africa, the UK, India, and Europe. You will be instrumental in embedding 'Security by Design' principles throughout the software development lifecycle, ensuring robust protection for critical financial systems used by stockbrokers and wealth managers worldwide.

What you'll do:

As a DevSecOps Engineer, you will be responsible for integrating advanced security measures into every stage of the software development lifecycle. Your day-to-day activities will involve designing secure CI/CD pipelines using industry-leading tools, embedding robust controls into infrastructure, automating monitoring processes, and supporting audit requirements. You will collaborate extensively with cross-functional teams across various geographic locations to select effective solutions, facilitate threat modelling sessions, develop secure deployment templates, harden build environments, automate vulnerability scanning procedures, monitor key metrics, prepare comprehensive reports for stakeholders, and support both internal and external audits. Success in this role requires you to be proactive in identifying risks early on, nurturing strong relationships with colleagues from different disciplines, sharing knowledge generously within the team network, and consistently upholding high standards of security throughout all technical operations.

What you bring:

The ideal candidate for the DevSecOps Engineer position brings proven experience in embedding robust security practices within fast-moving development environments. Your interpersonal skills enable you to connect easily with colleagues from diverse backgrounds while nurturing a culture of trust and mutual support. You possess deep technical knowledge of CI/CD pipelines along with hands-on expertise in DevOps tools such as Jenkins, Docker, Kubernetes or Ansible. Your experience managing cloud platforms like AWS or Azure ensures you can implement secure configurations confidently. Advanced scripting abilities allow you to automate complex tasks efficiently while maintaining compliance with recognised frameworks such as ISO27001 or NIST. You are adept at facilitating collaborative threat modelling sessions that help teams anticipate risks before they arise. Your commitment to sharing knowledge generously makes you a dependable resource during audit cycles—gathering evidence promptly and planning remediation actions thoughtfully. Above all else, your enthusiasm for communal problem-solving drives you to contribute actively within an inclusive team network dedicated to achieving shared goals.

• Minimum of three years’ experience working in a DevSecOps environment where you have demonstrated your ability to embed security throughout the software development lifecycle.
• Excellent communication skills enabling you to influence cross-functional teams positively while fostering collaboration across distributed geographic zones.
• A positive professional approach combined with well-developed organisational abilities that allow you to manage time effectively amidst competing priorities.
• Deep knowledge of CI/CD tools and pipelines such as Jenkins or similar platforms used for continuous integration and deployment.
• Expertise in DevOps methodologies alongside proficiency with key security tools including Docker, Kubernetes, Ansible or comparable technologies.
• Experience managing cloud security within platforms like AWS, Azure or GCP; understanding how to configure services securely according to best practice guidelines.
• Advanced scripting skills using languages such as Python or Bash for automation purposes within complex environments.
• Familiarity with industry-recognised security compliance frameworks including ISO27001 or NIST standards which guide organisational policy development.
• Ability to facilitate threat modelling sessions collaboratively with technical teams to identify potential vulnerabilities early in the design process.
• Proven track record of supporting audit activities by gathering evidence efficiently and planning technical remediation actions.

Robert Walters endeavours to review all applications in a maximum of five working days. If you have not received correspondence in this timeframe please do not hesitate to contact Sean Caulfield on +64 4 471 9732.