IT & Security Manager at Medenterprises managing technology and cybersecurity for healthcare professionals in Australia and New Zealand. Leading strategic initiatives and infrastructure to enhance security posture.
About the role
- Senior Cloud Security Engineer responsible for securing multi-cloud environments and implementing best practices. Join Zimperium, a leader in enterprise mobile security, in a fast-paced role.
Responsibilities
- Multi-Cloud Security Architecture: Design, implement, and manage security best practices and controls for services hosted across AWS, Azure, GCP, and OCI environments.
- Infrastructure as Code (IaC) & Automation: Act as the subject matter expert for security automation, leveraging CloudFormation and/or Terraform to deploy secure infrastructure consistently and at scale.
- System Hardening: Implement and enforce rigorous security configuration benchmarks, specifically CIS Level 2 and DISA STIGs, across all compute environments, including various flavors of Linux and Kubernetes clusters.
- Security Tooling & Operations: Configure, manage, and optimize cloud-native and third-party security tools such as Palo Alto Prisma Cloud, Orca, Google SecOps, and Palo Alto Next Generation Firewalls.
- Application & Network Defense: Deploy and manage Web Application Firewalls (WAFs), including F5 and other cloud-native WAF solutions, to protect critical applications.
- DevSecOps & Pipeline Security: Integrate security testing tools (SAST, DAST, SCA) into CI/CD pipelines to enable "shift-left" security practices.
- Secrets and Key Management: Design and maintain solutions for the secure storage and rotation of credentials, API keys, and secrets using tools like HashiCorp Vault or equivalent cloud-native services.
- Risk & Design Review: Conduct threat modeling and perform security reviews for new applications and services to proactively identify and mitigate risks in the design phase.
- Incident Response & On-Call: Participate in a rotating on-call schedule to address security incidents and operational issues promptly.
- Compliance & Reporting: Support internal and external audits by generating evidence, writing detailed reports, and delivering clear, concise technical presentations to leadership.
- Leadership & Mentorship: Operate with minimal oversight, taking the initiative to identify and suggest security improvements and drive projects to completion.
Requirements
- 8+ years of progressive experience in IT, with at least 5 years dedicated to Cloud Security Engineering in a multi-cloud environment.
- Expert-level proficiency in Infrastructure as Code (IaC) for security automation using Terraform and/or CloudFormation.
- Deep practical experience securing at least three of the following major cloud providers: AWS, Azure, GCP, and OCI.
- Proven expertise in system hardening using industry standards like CIS Level 2 and DISA STIGs.
- Extensive experience with Linux administration and securing containerization technologies, specifically Kubernetes.
- Hands-on experience with advanced security platforms, including at least two of the following: Palo Alto Prisma Cloud, Orca, Google SecOps, and Palo Alto Next Generation Firewalls.
- Demonstrated experience with WAF solutions, such as F5 or equivalent cloud-native services.
- Strong working knowledge of DevSecOps principles, including integrating security tools into CI/CD pipelines.
- Proven experience with Secret Management solutions (e.g., HashiCorp Vault, AWS Secrets Manager).
- Excellent written and verbal communication skills, including the ability to write executive-level reports and deliver technical presentations.
- Proven ability to operate independently and take ownership of critical responsibilities.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Manager leading cybersecurity integration across product lines and services at ADI Global. Overseeing strategies, managing teams, and aligning with organizational goals.
Senior Cybersecurity Advisor providing support to threat and vulnerability analysts at Exposant 3 in a hybrid work model. Collaborating on incident responses and vulnerability management in a dynamic team.
Technicien en installations de systèmes de sécurité électronique au sein de Chubb. Responsable de l’installation, mise en service et formation des utilisateurs sur divers systèmes de sécurité.
Lead Security Specialist overseeing security measures for classified programs at GE Aerospace. Managing compliance with ICD 705 standards and ensuring operational integrity of sensitive information.
Senior Manager overseeing IAM initiatives and strategic roadmap execution at RBC. Partnering with stakeholders to enhance organizational capabilities in Identity and Access Management.
Senior IAM Systems Support Analyst responsible for deploying and improving IAM services at RBC. Supporting MFA systems and ensuring platform reliability while collaborating with various teams.
Financial Security Advisor at RBC Insurance connecting clients with comprehensive insurance solutions. Building client relationships and leveraging RBC’s brand to grow the market.
Data Center Security Officer managing security operations at data center facilities. Responsibilities include monitoring premises, conducting patrols, and ensuring safety and security protocols.
Security Program Manager leading threat assessment and workplace violence prevention at Medtronic. Collaborating across departments to enhance workplace safety and security culture.