Senior Security Engineer

Our Purpose

At Xero, we're here to help you supercharge your business. We do this by automating routine tasks, surfacing actionable insights and connecting businesses with the right data, advisors and apps. When that happens, we're not only making life better for small business, we'll be building a stronger economy that can change the world.

About the team

Our Cyber Security Engineering pods are responsible for delivering Xero's underlying network infrastructure for our beautiful offices, seamless communication, and work from anywhere methodology. We run mission-critical infrastructure, and you'll build resilient and scalable networks.

About the role

As a Senior Security Engineer, you'll be hands-on solving problems with a focus on DLP, Firewalls, SASE, ZTNA and CASB.

Over time, you'll become deeply familiar with the capabilities of our vendors to build and support modern and adaptable security services that will delight our customers. You'll deliver robust network security solutions across both BAU and project-based initiatives in a fast-paced dynamic environment.

Automation will be the standard for you, and you'll seek new and interesting ways to reduce our operational overheads. We're looking for people with a growth mindset, continuously learning and adapting to emerging network security threats and technologies; coupled with experience working in high-availability network security environments.

Most importantly, you'll be a team player and get to work with an awesome group of engineers in an amazing and unique working environment.

• Assess, design, implement and manage security protocols, with emphasis on Data Loss Protection to protect Xero's sensitive data and meeting compliance (SOC2 and ISO27001).
• Provide input and guidance to develop security frameworks and ensure best practices are applied across the Xero network; develop and lead scalable, reliable and secure network architectures such as SASE, ZTNA, DLP, CASB and SWG.
• Automate security configurations and infrastructure-as-code (IaC) practices to reduce operational overhead and improve reliability; support high-availability network security for BAU operations, and deliver solutions in project-driven environments.
• Proactively monitor, detect, and respond to security threats, ensuring incidents are closed, contained, and remediated efficiently in a timely manner.
• Work with SOC teams and security analysts to tune and optimise network security detections for evolving threats; conduct regular security assessments, ensuring network configurations, firewalls, and security policies align with best practices and regulatory standards.
• Provide coaching and mentorship, helping teach small groups of engineers and contributing to Xero's shared knowledge base.

• Deep expertise in Data Loss Prevention (DLP) solutions, including policy configuration, monitoring, and incident management.
• Extensive experience in network security, cloud-based security solutions, and Zero Trust architectures. - Ideally with proven ability of designing and enforcing Zero Trust security models, ensuring secure authentication, segmentation, and access controls.
• Proficiency in scripting and automation (Python, Terraform, or other infrastructure-as-code tools).
• Experience working with Cloud Access Security Broker (CASB) and Secure Web Gateway (SWG)
• Deep understanding of network security compliance frameworks (SOC2, ISO 27001, NIST, CIS Benchmarks).
• Strong stakeholder management skills, with the ability to influence without authority and align security priorities with business needs.
• Solid background in cybersecurity incident response, threat detection, and network forensics. Including incident response and troubleshooting skills, ensuring rapid recovery and remediation of network security threats.

Why Xero?

Offering very generous paid leave to use however you'd like (plus statutory holidays), dedicated paid leave to care for your physical and mental wellbeing as well as an Employee Assistance Program to access mental health care for you and your family. Health insurance, life insurance, and income protection.

We offer wellbeing and sports programmes, employee resource groups, 26 weeks of paid parental leave for primary caregivers, an Employee Share Plan, beautiful offices, flexible working, career development, and many other benefits that reflect our human value.

You'll do the best work of your life at Xero