Senior Application Security Engineer
7 months ago
We’ve only just begun, but what a beginning. In a once in a generation moment, we’ve brought together powerful brands to create one united force. TPG Telecom has a powerhouse of brands which include Vodafone, TPG, iiNet, Internode, Lebara, AAPT and felix. The latest technology and brave thinking let us connect our people and communities. You could play a role in that. A big one. We invite you to bring your boldness and stand out. You are empowered. Opportunities are plenty for those ready to accept the challenge.
This opportunity
We are in pursuit of a dedicated Senior Application Security Engineer to be a key player in our Security Assurance Team. In this role, you will blend technical acumen with an empathetic approach, ensuring our software development processes are both sophisticated and secure. Working together with our Red-team and wielding tools like static code analysis and Dynamic Application Security Testing (DAST), you will be the guardian of our code, ensuring it meets the zenith of security standards.
Successful people in Security maintain close relationships with colleagues across TPG Telecom, foster friendly working environments, and demonstrate a willingness to ask questions. You will achieve this through empathy and integrity, as these qualities are important to the role. At TPG, we value diversity and encourage innovation. We recognise that mistakes are a part of growth, and we appreciate individuals who are willing to explore innovative approaches to old problems.
Responsibilities
Execute comprehensive reviews of application codes, unearthing and addressing potential security risks. Harness tools like static code analysis and DAST to provide detailed and thorough code evaluations. Collaborate seamlessly with our Red team, integrating their insights to strengthen our digital defences. Ensure unwavering adherence to our Software Security Development Life Cycle (SSDLC). Educate and guide development teams, championing a culture of security-conscious development and continuous growth. Maintain an up-to-date understanding of contemporary security trends, vulnerabilities, and protective measures. Apply a nuanced understanding of risk, integrating it into evaluations to prioritize and address potential vulnerabilities effectively. Foster a nurturing environment that promotes mutual respect, continuous learning, and collaboration.Key Tasks and Expectations
Static Code Analysis: Use state-of-the-art tools to perform a detailed static analysis of application codes, ensuring that potential vulnerabilities are identified and addressed. Dynamic Application Security Testing (DAST): Execute real-time security testing on applications in their running state, highlighting live potential security threats IAST: Utilise interactive application security testing (IAST) tools to combine dynamic and runtime analysis. Threat Modelling: Lead sessions to identify, quantify, and address security threats at various stages of the development process. Code Reviews: Collaborate with development teams, conducting comprehensive code reviews to pinpoint and address security-related issues. Risk Assessment: Evaluate security findings and understand them in the context of business risk, helping prioritise security efforts accordingly. Collaboration with Red Team: Work closely with the Red Team to understand potential attack vectors, utilizing their findings to fortify the security posture of applications under development. SSDLC Adherence: Ensure that the Software Security Development Life Cycle (SSDLC) processes are strictly followed throughout the development phase, ensuring security is embedded at every stage. Security Training: Offer guidance, training sessions, and workshops to development teams, emphasizing the importance of security best practices and fostering a culture of security-conscious development. Continuous Learning: Stay updated with the latest trends in security vulnerabilities, defence mechanisms, and best practices in the industry. Feedback Loop: Create a mechanism for timely feedback to developers on security-related issues, ensuring that vulnerabilities are addressed swiftly. Integration of Security Tools: Ensure that appropriate security tools are integrated into the CI/CD pipeline, enabling automated checks and early detection of potential threats. Documentation: Maintain clear and comprehensive documentation of findings, recommendations, and actions taken, ensuring that all stakeholders are informed and that there is a clear record for future reference.Knowledge and experience
Your experience within the digital assurance area in the retail and/or telecommunications sectors will be highly valued. We need a keen eye for detail, an ability to understand complex IT systems, and a talent for simplifying complexities. Most importantly, we seek someone excited about their role, friendly, empathetic, and ready to collaborate.
Benefits and perks
Flexible hybrid way of working (from home and office) ‘Stay Connected Mobile’ – Access to a free mobile plan ‘Stay Connected NBN’ – Access to a free NBN 100 plan ‘Your Leave’ - an additional 4 days of leave to be used whenever you like - every year Access to TPG Learning Hub platform and internal development opportunities Access to Corporate Partner DiscountsBolder and better together
Don’t meet every single requirement? We're ok with that. Studies have shown that women and those of underrepresented groups are less likely to apply for roles unless they meet every single criteria. At TPG Telecom we recognise that what may make you different, makes the difference
We’re all about enabling every individual to be their authentic selves and creating a place where everybody belongs. If you are excited about this role, but your experience doesn’t align perfectly with every qualification in the job description, we encourage you to APPLY NOW regardless. You may just be the right candidate for this or perhaps another similar role with us.
We are a 2023 Circle Back Initiative Employer – we commit to respond to every applicant.
Our Talent Acquisition Team and Hiring Managers kindly request no unsolicited resumes or approaches from Recruitment Agencies. TPG Telecom is not responsible for any fees related to unsolicited resumes.
#LI-Hybrid #TS-1
-
Senior Application Security Engineer
7 months ago
North Sydney, Australia TPG Telecom Full timeWe’ve only just begun, but what a beginning. In a once in a generation moment, we’ve brought together powerful brands to create one united force. TPG Telecom has a powerhouse of brands which include Vodafone, TPG, iiNet, Internode, Lebara, AAPT and felix. The latest technology and brave thinking let us connect our people and communities. You could play...
-
Senior Application Security Engineer
2 months ago
Sydney, Australia Tyro Payments Limited Full timeWhy work for TyroWe're not just like every other bank. Tyro has always been a tech company at heart, but fostering a diverse and inclusive environment, and a passion for continuous learning has always been one of the most important parts of our company's culture.Tyros are a highly collaborative mix of people. You will work closely with our awesome teams and...
-
Senior Application Security Specialist
4 weeks ago
North Ryde, New South Wales, Australia Oracle Full timeAbout the RoleWe are seeking a highly skilled Senior Application Security Specialist to join our team in North Ryde. This role will involve working collaboratively with our engineers to extend and support an in-house static application security testing tool.As a Senior Application Security Specialist, you will be responsible for conducting complex...
-
Senior Application Security Specialist
4 weeks ago
North Ryde, New South Wales, Australia Oracle Full timeWe are looking for an experienced Senior Application Security Specialist to join our team in North Ryde. The ideal candidate will have a strong background in application security and experience working with static analyzers.In this role, you will work collaboratively with our engineering team to extend and support our in-house static application security...
-
Application Security Engineer
3 months ago
Sydney, Australia ASIC Full timeThe role As an Application Security Engineer, you will help lead the product security and application security initiatives ensuring that security is integrated into every aspect of the software development lifecycle and deployment processes. As part of the role, you will also support the cyber assurance function and the delivery of the Cyber Uplift...
-
Application Security Engineer
4 months ago
Sydney, Australia Tal Services Limited Full timeCompany DescriptionWelcome to This Australian Life. From the millions of Australians we protect, to those that make it happen every day at TAL, people really are what we’re all about. We want to grow with you. Achieve with you. And support you to do your best work. That's why we're focused on developing leadership, promoting diversity, rewarding...
-
Senior Security Engineer, Amazon Security
3 months ago
Sydney, Australia Amazon Full timeDESCRIPTIONEmbark on a Mission to Fortify Amazon's Defenses as a Senior Security Engineer with the Vulnerability Management & Remediation Operations team!Amazon Security is seeking an experienced and innovative Senior Security Engineer to join our Vulnerability Management and Remediation Operations (VMRO) team in Sydney, Australia. The VMRO team is...
-
Application Security Expert
4 weeks ago
North Ryde, New South Wales, Australia Cerner Full time**About the Role**As a Security Analyst, you will be part of our team working on advancing the state-of-the-art for developers through Static Application Security Testing (SAST) and Software Composition Analysis (SCA) tools. Our mission is to make application security, at scale, a reality.We value people who can use their program analysis and/or data...
-
Senior Software Security Assurance Engineer
4 weeks ago
North Sydney Council, Australia TPG Telecom Full timeWe are in pursuit of a dedicated cybersecurity professional to be a key player in our Security Assurance Team at TPG Telecom. In this role, you will blend technical acumen with an empathetic approach, ensuring our software development processes are both sophisticated and secure.As a Senior Software Security Assurance Engineer, you will work together with our...
-
Senior Security Consultant
7 months ago
North Sydney, Australia Firesoft People Full timeJob Title: Senior Security Engineer for MSPLocation: SydneySalary: $200,000 plus superOur client is a leading IT Service and Infrastructure Solutions Provider. They maintain strong relationships with all major industry-leading IT vendors, offering a comprehensive range of technology services and solutions to perfectly benefit their client’s needs and...
-
Data Engineer, Acceleration
1 month ago
Sydney, Australia Senior Full timeDescription Position at GroupM About us Acceleration is WPP’s specialist practice for data, analytics & technology consulting. We are a curious team of highly skilled data and technology practitioners, inspired by experimentation and new ideas. This is the lifeblood of the future-forward solutions we deliver, that...
-
Senior Data Architect for Marketing Analytics
4 weeks ago
Sydney, New South Wales, Australia Senior Full timeJob OverviewWe are seeking a highly skilled Senior Data Architect to join our team. This is a senior-level position responsible for designing and building scalable cloud-based systems and applications for our marketing analytics clients.The ideal candidate will have at least 4+ years of experience delivering data engineering solutions on Google Cloud...
-
Application Security Consultant
2 weeks ago
Sydney, Australia Commonwealth Bank of Australia Full timeApplication Security Consultant **Your new team**: The Application Security team, a part of the wider Cyber Security team, partners with our engineering teams to enable DevSecOps by integrating security into the software development lifecycle through the following services: - **Tooling and Automation**: Embedding security tools and automation into the SDLC...
-
Application Security Consultant
3 weeks ago
Sydney, Australia Commonwealth Bank Full time**Your new team**: The Application Security team, a part of the wider Cyber Security team, partners with our engineering teams to enable DevSecOps by integrating security into the software development lifecycle through the following services: - **Tooling and Automation**:Embedding security tools and automation into the SDLC (such as Snyk and GitHub Advanced...
-
Senior Systems Engineer – Security
6 months ago
Sydney, Australia REA Group Full timeWe’re REA REA Group ( is not your average digital business. From humble beginnings in a garage in Melbourne’s east in 1995, we have grown into a leading global digital business, specialising in property. With bold and ambitious goals, we are changing the way the world experiences property. No matter where you're at on your property journey, we're...
-
Senior Cybersecurity Engineer
2 months ago
Sydney, New South Wales, Australia The Decipher Bureau Full timeJob Title: Senior Cybersecurity EngineerAbout the Role:We're seeking a highly skilled Senior Cybersecurity Engineer to join our team at The Decipher Bureau. As a Senior Cybersecurity Engineer, you'll be responsible for designing and implementing secure software development life cycles (SDLCs) and ensuring the security of our products and platforms.Key...
-
AWS Security Engineer
2 weeks ago
Sydney, New South Wales, Australia Culture Amp Full timeJob Title: AWS Security EngineerWe are seeking an experienced AWS Security Engineer to join our team at Culture Amp. The role is based in Australia and requires a deep understanding of cloud security principles, AWS services, and software development.The estimated salary for this role is $120,000 - $180,000 per annum, depending on experience.Company...
-
North Sydney, Australia Amazon Corporate Services Pty Ltd Full timeAs a Security Engineering manager, you will help build and manage services that drive and automate the mitigation of incident response across all Amazon Web Services (AWS). You will manage software development engineers, security engineers and program managers to develop innovative security solutions at an unprecedented scale. Our services protect the AWS...
-
Senior Security Engineer
1 month ago
Sydney, Australia The Decipher Bureau Full timeAre you an experienced Engineering Manager who has lead small teams across a global platforms, ideally with some exposure to Cyber Do you take pride in your teams work and strive for success through clear communication, leadership and accountability?Are you looking for a large enterprise environment where you will be responsible for a small global team who...
-
Application Security Specialist
6 months ago
Sydney, Australia Decipher Bureau Full timeCan be based in Sydney as a hybrid, or remote - Salary depending on experience - up to $160k base + super + bonuses - Huge long term learning and career growth opportunity If you're somebody that can communicate with Developers, knows how to review code or understands how to use the right scanning tools to ensure code is secure then you have the right...