Infrastructure Permanent
- Sydney: +61 2 8346 6700
- Dublin: +353 1 697 2548
Our client is deep into a major transformation journey moving from traditional on-prem environments to a cloud-first, modern, security-led technology strategy. As part of this uplift, we are looking for a hands-on Senior Cloud Security Specialist who thrives in fast-paced environments, enjoys solving complex problems, and is confident working directly across engineering, cyber and delivery teams.
This is a high-impact individual contributor role, ideal for someone who enjoys both depth in AWS security and breadth across identity, DevSecOps and cloud governance.
Security is at the centre of the cloud adoption program. You will play a key part in strengthening AWS-native controls, improving visibility across multi-account environments, maturing automated detection capabilities, and working closely with engineering squads to uplift secure-by-design practices.
You’ll also have the opportunity to influence how DevSecOps evolves across the organisation as cloud adoption accelerates.
Owning and enhancing AWS-native security controls including Security Hub, GuardDuty, Config, Inspector, IAM and multi-account governance.
Supporting the organisation-wide shift from on-prem to AWS cloud-native services, ensuring security is embedded into design and delivery.
Improving vulnerability management across the full cloud stack, including automated posture checks, remediation workflows and reporting.
Providing hands-on incident response in AWS environments – CloudTrail investigations, IAM analysis, detection triage and root cause analysis.
Working closely with DevOps / engineering teams to uplift DevSecOps practices, including secure CI/CD, secret management and policy-as-code.
Contributing to the evolution of Landing Zone guardrails, identity baselines, logging standards and risk-based control implementation.
Partnering across Cyber GRC, Cyber Programme and Digital Solutions teams in a federated security model.
Speaking up, challenging assumptions and driving continuous improvement across cloud and security processes.
You don’t need to tick every box — but strong candidates will bring:
Technical depth in AWS security:
Hands-on expertise with AWS-native services (Security Hub, GuardDuty, IAM, Config, Inspector, CloudTrail).
Experience working in multi-account AWS environments (SCPs, Organizations, Landing Zone, identity patterns).
Understanding of, or experience with, CSPM tools (e.g., Cloud Conformity, Wiz, Ermetic, Prisma) and cloud posture remediation.
Engineering & DevSecOps mindset:
Experience with Terraform or CloudFormation (policy templates, guardrails, IaC patterns).
Familiarity with secure CI/CD, vulnerability scanning, SAST/SCA, secrets management and automation.
Strong scripting skills (Python/Bash/YAML) a bonus.
Security operations capability:
Cloud IR exposure — event analysis, IAM investigation, threat detection logic.
Understanding of identity security, least privilege, access baselines and risk evaluation.
Personal attributes:
Confident communicator who isn’t afraid to speak up.
Collaborative across teams while still comfortable owning delivery end-to-end.
Curious, proactive, motivated, and comfortable context-switching across multiple initiatives.
Hybrid work (North Sydney office)
Work with a high-performing cyber team during a major cloud uplift
Opportunity to influence DevSecOps maturity and cloud security standards
Supportive leadership and engineering-minded peers
Real autonomy, real impact, and a role where you can directly shape the future state
If you’re an AWS cloud security engineer looking for a role where you can actually make an impact — not just monitor dashboards — we’d love to hear from you.
Apply now or contact Amanda Evans for a confidential discussion.
Infrastructure Permanent
