Software Engineer, Application Security SYD & MELB (All flex considered)

Victoria, Australia

April 22, 2020
Software engineer

Our client is seeking cybersecurity professionals to research and monitor emerging and current cyber threats, and participate in the development of mitigating strategies, architectures and tactics.

Your role

The Software Engineer, Application Security reports to the Engineering Practice Lead and will be responsible for embedding and reinforcing secure design and development practices across delivery teams to meet our client's security policies and standards.

This role will proactively work across all software delivery teams to raise the profile of security in delivery and provide specialist technical guidance to teams on designing solutions, coding and testing with security in mind. 

This role will also take a lead role in raising awareness of secure coding practices and onboarding of teams onto SAST capability.

Some of the key activities in this role will be:

  • Collaborate in the creation of solution and detailed designs aligned to Security and related engineering standards
  • Assist delivery teams on compliance to and use of approved security reference architectures and patterns
  • Undertake threat risk assessments and design reviews to verify embedded security controls and identify potential security vulnerabilities
  • Define and support execution of quality assurance activities, i.e. security acceptance criteria. dark stories, penetration testing
  • Provide technical security SME support to delivery teams
  • Co-ordinate Security awareness and training campaigns to uplift delivery team capabilities

Contribute to development, maintenance and implementation of security policies, standards, patterns and practices.

About you

In this role, your expertise in developing security software as part of a wider team, with proven track record in delivering security features will be essential.

As Software Engineer, Application Security you will have strong knowledge of secure design and coding practices and based on this the ability to provide guidance to teams on best practice.

In addition to this, the competency required for this role will include:

  • Demonstrated experience in managing and assigning development/ features across an integrated AGILE and Waterfall development environment
  • Ability to translate threat intelligence into actionable designs
  • Advanced capability in the use of technologies that support threat intelligence
  • Leading ideation sessions to automate and orchestrate cyber defence activities from a single pane
  • Working with Cyber Defence team to tools efficacy and effectiveness
  • Find new ways of operating and be highly effective in problem solving


Continue the conversation

If you think this role might be for you, we want to hear from you. Please express your interest & ensure your profile is updated with your current CV along with your ideal criteria for flex and salary expectations.