Director, Devsecops

Shape our comprehensive DevSecOps strategy, driving security, reliability, and quality across our technology landscape.
Lead and inspire high-performing teams, fostering a culture of continuous improvement and operational excellence.
Work flexibly from our Sydney office, leading a critical function within our global technology team.
Write your story with a career at Zip
Join Zip's Technology team. This team builds and maintains seamless, secure, and sustainable platforms. These platforms enable customers to shop with confidence and merchant partners to grow their brands.
As the Director of DevSecOps, you will be a hands-on technical leader. You will oversee Site Reliability Engineering (SRE), Cloud Infrastructure, Quality Engineering (QE), Technology Cloud Operations, Organisational Security, Product Security, and Governance, Risk and Compliance (GRC). Your focus will be on ensuring the stability, performance, quality, and security of Zip's production systems in ANZ. You will champion a proactive, security-first culture and operational excellence, ensuring Zip's continued customer trust. You will actively contribute to security architecture, engineering, and IT decision-making processes. Your leadership will be critical in navigating complex security, IT Infrastructure, SRE, and Quality challenges to ensure Zip's continued growth.
Interesting problems you'll get to solve
Develop and execute a comprehensive DevSecOps strategy aligned with company objectives.
Lead and mentor high-performing Technology teams.
Identify, assess, and mitigate DevOps and security risks.
Embed DevSecOps principles early in design through cross-functional collaboration.
Establish and enforce security policies, standards, and guidelines, ensuring compliance with relevant regulations (e.g., ISO 27001, SOC 2, GDPR).
Champion security automation, including SAST, DAST, SCA, IaC scanning, and container security.
Lead SRE teams, focusing on incident management, root cause analysis, and continuous improvement of system reliability.
Drive continuous improvement in our security posture.
Drive the 'shift-left' of quality and performance practices.
Strategically collaborate with internal and external stakeholders.
Manage cloud costs, identifying anomalies and driving cost-saving initiatives.
Own and evolve our vendor selection process for security requirements.
Lead the security approach to AI capabilities.
What you'll bring to the team
To help us level up, and for you to grow with us, you'll bring:
Exceptional leadership and communication skills, enabling you to lead by example and gain the respect of your team, peers, executives, and board through your deep understanding of your craft.
Extensive experience (typically 12+ years with a Bachelor's degree, or 8+ years with a Master's degree) in DevSecOps, preferably in a fast-paced technology-driven environment.
Deep understanding of cybersecurity and compliance frameworks (e.g., NIST, ISO 27001, PCI DSS).
Demonstrated expertise in developing and implementing enterprise-wide DevSecOps and security strategies and roadmaps.
Knowledge and experience in ITIL practices with a proven track record of implementing and uplifting service management capabilities.
Experience leading large-scale quality management teams as part of an assurance governance process.
Proven ability to lead, develop, and inspire high-performing DevSecOps teams, fostering a culture of continuous learning and accountability.
Exceptional strategic thinking and problem-solving skills, with the ability to navigate complex and ambiguous situations and a collaborative approach to challenges.
Outstanding communication, influencing, and negotiation skills, capable of effectively conveying complex security concepts to diverse technical and non-technical audiences, including executive leadership and external partners.
A strong track record of successfully managing complex Security projects, incident response, and disaster recovery initiatives.
Experience in securing cloud-native environments (e.g., AWS, Azure, GCP) and modern software architectures.
A mindset that embraces AI and new tools to adapt, learn and grow.
An aptitude for identifying and managing risks. Whether you are a People Manager or an Individual Contributor, we are all leaders at Zip and effective risk management is important to how we run our business and part of all our roles.
Our values in your DNA: Customer First, Own It, Stronger Together and Change the Game.
Be a part of a team that reflects the diversity of our customers
We pride ourselves on being a workplace that provides equal opportunities to people of all ages, cultural backgrounds, sexual orientations, gender identities, abilities, veteran status, and everything else that makes you unique.
Equally, we're committed to ensuring our recruitment processes are accessible and inclusive. Please let us know If there are any adjustments that need to be made to ensure you have a fair and equitable experience.
And finally...get to know us
Zip Co Limited (ASX: ZIP) is a digital financial services company, offering innovative, people-centred products.
Operating in two core markets - Australia and New Zealand (ANZ) and the US, Zip offers access to point-of-sale credit and digital payment services, connecting millions of customers with its global network of tens of thousands of merchants.
We're proud to be a values-led business and our values - Customer First, Own it, Stronger Together and Change the Game - guide us in everything we do.
#LI-Hybrid
#J-18808-Ljbffr