DevSecOps Engineer

HUB24 leads the wealth industry as the best provider of integrated platform, technology and data solutions. At HUB24, we know the smartest investments start with our people. We are innovative and ambitious, and we move fast.

At HUB24, we empower our employees to bring their ideas and creativity to work. Rather than getting bogged down in bureaucracy and red tape, we build a culture that supports our team members to have a real impact on our business and the success of our customers.

HUB24 Limited is a company listed on the Australian Securities Exchange (ASX: HUB)

THE HUB24 STORY
We think creatively and we're not constrained by traditional thinking or barriers to success. We're led by experts, realists with ideas, grounded in commercial reality who are bold enough to visualise the future a little differently and to advocate for what matters to our clients. We are here to lead change and are committed to empowering better financial futures for more Australians.

Benefits And Life At HUB24
Learn more about our employee benefits HERE.

Job Summary
Are you passionate about building secure, resilient, and reliable software—without compromising on speed or agility? We're looking for a thoughtful and collaborative DevSecOps Security Engineer to join our team and help embed security at every stage of the development lifecycle.

In this role, you'll work closely with our Platforms, Cyber, Software, and Testing teams to co-create solutions that are secure by design. You'll bring a blend of technical expertise and a partnership mindset to foster a culture of shared security ownership across the organisation.

We're looking for someone who cares deeply about collaboration, continuous improvement, and delivering secure outcomes that truly support our people and our customers.

Responsibilities

• Champion security throughout the DevOps lifecycle—proactively embedding protections from code to cloud.
• Empower teams by integrating automated controls that support fast, safe, and scalable software delivery.
• Collaborate across disciplines to ensure security is considered early, often, and as a shared responsibility.
• Integrate security seamlessly into CI/CD pipelines, supporting secure software delivery without slowing teams down.
• Conduct threat modelling and support vulnerability identification and remediation activities.
• Automate security testing (SAST, DAST, SCA, container scanning) to enable proactive risk management.
• Apply best practices in cloud security across AWS, Azure, or GCP environments.
• Collaborate to design and implement secure Infrastructure as Code (IaC) and zero-trust architectures.
• Support compliance efforts aligned to standards like CIS, NIST, ISO27001, and PCI-DSS.
• Implement logging, monitoring, and alerting for early detection and response to security incidents.
• Contribute to a culture of continuous learning, experimentation, and shared success.

Requirements

• Experience automating security controls within CI/CD pipelines (e.g., GitHub Actions, GitLab, Jenkins, Azure DevOps).
• Familiarity with modern security testing tools and frameworks (SAST, DAST, SCA, container security).
• Proficiency in scripting languages (Python, Bash, or similar).
• Hands-on knowledge of vulnerability management and incident response.
• Strong understanding of cloud security, secrets management, IAM, and WAFs.
• Ability to communicate clearly and empathetically with both technical and non-technical stakeholders.
• Comfort working across and bridging Cyber, Dev, and Ops teams.

The Recruitment Process

• Acknowledgement email once your application has been submitted.
• Our Talent team will start reviewing your application. If unsuccessful, you will be notified.
• If your application progresses to the next stage, our Talent team will be in touch to discuss your alignment with the role.
• If you're a person with an impairment or disability, this is an opportunity to share with us any accessibility requirements that you may have for the role.
• Should you require any accommodations to the recruitment process, please email , and one of our team will contact you.
• Interviews can happen virtually or face-to-face with the hiring manager or other members of the broader team. Depending on the role, there may be more than two interviews.
• Communication of outcomes to successful and unsuccessful candidates and feedback provided.
• As part of our process, a police check will be conducted on all successful candidates*. Further details on our HUB24 Group Recruitment Privacy Collection notice can be found here.

2024 Circle
Back
Initiative Employer
– we commit to respond to every applicant.

Endorsed by
WORK180,
we are proud to be recognised as an employer of choice for women.

We have been nominated and placed on the
BOSS Best Places to work list.
Seek Star Awards Nominated as a finalist for the
Best Employer Brand Initiative
HUB24 is an equal opportunity employer.
We are committed to creating an inclusive environment where diverse perspectives are valued and every individual is treated with respect. We welcome applications from people of all backgrounds, including Aboriginal and Torres Strait Islander peoples, people with disabilities, people from culturally and linguistically diverse communities, and people of all gender identities and sexual orientations. If you require adjustments to the recruitment process or have accessibility requirements, please let us know – we're here to support you