Director, Security

• Shape our comprehensive DevSecOps strategy, driving security, reliability, and quality across our technology landscape.
• Lead and inspire high-performing teams, fostering a culture of continuous improvement and operational excellence.
• Work flexibly from our Sydney office, leading a critical function within our global technology team.

Write your story with a career at Zip

Join Zip's Technology team. This team builds and maintains seamless, secure, and sustainable platforms. These platforms enable customers to shop with confidence and merchant partners to grow their brands.

As the Director of DevSecOps, you will be a hands-on technical leader. You will oversee Site Reliability Engineering (SRE), Cloud Infrastructure, Quality Engineering (QE), Technology Cloud Operations, Organisational Security, Product Security, and Governance, Risk and Compliance (GRC). Your focus will be on ensuring the stability, performance, quality, and security of Zip's production systems in ANZ. You will champion a proactive, security-first culture and operational excellence, ensuring Zip's continued customer trust. You will actively contribute to security architecture, engineering, and IT decision-making processes. Your leadership will be critical in navigating complex security, IT Infrastructure, SRE, and Quality challenges to ensure Zip's continued growth.

Interesting problems you'll get to solve

• Develop and execute a comprehensive DevSecOps strategy aligned with company objectives.
• Lead and mentor high-performing Technology teams.
• Identify, assess, and mitigate DevOps and security risks.
• Embed DevSecOps principles early in design through cross-functional collaboration.
• Establish and enforce security policies, standards, and guidelines, ensuring compliance with relevant regulations (e.g., ISO 27001, SOC 2, GDPR).
• Champion security automation, including SAST, DAST, SCA, IaC scanning, and container security.
• Lead SRE teams, focusing on incident management, root cause analysis, and continuous improvement of system reliability.
• Drive continuous improvement in our security posture.
• Drive the 'shift-left' of quality and performance practices.
• Strategically collaborate with internal and external stakeholders.
• Manage cloud costs, identifying anomalies and driving cost-saving initiatives.
• Own and evolve our vendor selection process for security requirements.
• Lead the security approach to AI capabilities.

What you'll bring to the team

To help us level up, and for you to grow with us, you'll bring:

• Exceptional leadership and communication skills, enabling you to lead by example and gain the respect of your team, peers, executives, and board through your deep understanding of your craft.
• Extensive experience (typically 12+ years with a Bachelor's degree, or 8+ years with a Master's degree) in DevSecOps, preferably in a fast-paced technology-driven environment.
• Deep understanding of cybersecurity and compliance frameworks (e.g., NIST, ISO 27001, PCI DSS).
• Demonstrated expertise in developing and implementing enterprise-wide DevSecOps and security strategies and roadmaps.
• Knowledge and experience in ITIL practices with a proven track record of implementing and uplifting service management capabilities.
• Experience leading large-scale quality management teams as part of an assurance governance process.
• Proven ability to lead, develop, and inspire high-performing DevSecOps teams, fostering a culture of continuous learning and accountability.
• Exceptional strategic thinking and problem-solving skills, with the ability to navigate complex and ambiguous situations and a collaborative approach to challenges.
• Outstanding communication, influencing, and negotiation skills, capable of effectively conveying complex security concepts to diverse technical and non-technical audiences, including executive leadership and external partners.
• A strong track record of successfully managing complex Security projects, incident response, and disaster recovery initiatives.
• Experience in securing cloud-native environments (e.g., AWS, Azure, GCP) and modern software architectures.
• A mindset that embraces AI and new tools to adapt, learn and grow.
• An aptitude for identifying and managing risks. Whether you are a People Manager or an Individual Contributor, we are all leaders at Zip and effective risk management is important to how we run our business and part of all our roles.
• Our values in your DNA: Customer First, Own It, Stronger Together and Change the Game.

Be a part of a team that reflects the diversity of our customers

We pride ourselves on being a workplace that provides equal opportunities to people of all ages, cultural backgrounds, sexual orientations, gender identities, abilities, veteran status, and everything else that makes you unique.

Equally, we're committed to ensuring our recruitment processes are accessible and inclusive. Please let us know If there are any adjustments that need to be made to ensure you have a fair and equitable experience.

And finally…get to know us

Zip Co Limited (ASX: ZIP) is a digital financial services company, offering innovative, people-centred products.

Operating in two core markets - Australia and New Zealand (ANZ) and the US, Zip offers access to point-of-sale credit and digital payment services, connecting millions of customers with its global network of tens of thousands of merchants.

We're proud to be a values-led business and our values - Customer First, Own it, Stronger Together and Change the Game - guide us in everything we do.

#LI-Hybrid

*

indicates a required field

First Name *

Last Name *

Email *

Phone *

Resume/CV *

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

LinkedIn Profile *

Do you have full Australian working rights? * Select...

Do you have experience developing and executing a DevSecOps strategy? * Select...

Do you have experience managing leaders of leaders? * Select...

What are your salary expectations? *

I acknowledge and agree to Zip's candidate privacy statement. * Select...

Read up on our candidate privacy statement here .

At Zip we are passionate about building for diversity, inclusion and balance so we can bring out the best in all Zipsters; existing and new. That's why we have launched a dedicated DEI strategy called "Building for Balance". To help us achieve this we're committed to continuously monitoring our progress, learning from our people and trying new things so we can build a truly diverse and inclusive team. We would love your help by taking part part in this anonymous survey which will help us evaluate our efforts. This is completely voluntary and not taking part will have no impact on your job application. All information is anonymous and not connected to your name or job application and will be kept secure and used solely to evaluate our diversity and inclusion programs.

By answering this survey, I give my consent for Zip to process this data.

What gender do you identify as? Select...

I identify my ethnicity as (please select all that apply): Select...

What is your age range? Select...

How important is flexibility and the opportunity for working remotely when considering a new opportunity? ("5" being critical and "1" being not that important to you personally) Select...