DevSecOps Engineer – Full-Time

About Company

Are you driven by securing the software development lifecycle? Career.zycto offers a dynamic environment where your expertise in DevSecOps will directly impact our innovative product suite. We champion a culture of continuous improvement, cutting-edge technology adoption, and collaborative problem-solving. Joining our team means contributing to projects that demand robust security from inception, working alongside passionate professionals committed to excellence. We believe in empowering our engineers to take ownership, innovate, and grow their careers in a supportive, forward-thinking atmosphere. Shape the future of secure development with us.

Job Description

Career.zycto is seeking a highly skilled and proactive DevSecOps Engineer to join our innovative team in Como, Perth. In this pivotal role, you will be instrumental in integrating robust security practices throughout our entire software development lifecycle (SDLC), from initial design and development to deployment and ongoing operations. We are looking for an individual who possesses a deep understanding of both development methodologies and security principles, capable of championing a ‘security-first’ mindset within our dynamic engineering culture.

As a DevSecOps Engineer, you will be at the forefront of securing our cloud-native applications and infrastructure. Your expertise will be crucial in designing, implementing, and maintaining automated security controls and processes, ensuring that security is an inherent part of our CI/CD pipelines. This includes configuring and managing security scanning tools (SAST, DAST, SCA), performing threat modeling, and conducting regular security audits. You will proactively identify security vulnerabilities, implement preventative measures, and collaborate with various teams to remediate identified risks, ensuring compliance with industry standards, regulatory requirements, and best practices.

Your day-to-day will involve working closely with development, operations, and dedicated security teams. You will drive the adoption of cutting-edge security tools and technologies, develop secure coding guidelines, and provide practical training and mentorship to engineers on secure development practices. Furthermore, you will contribute to the secure architecture of our evolving product suite, participate in incident response planning, and continuously evaluate new security technologies to enhance our overall security posture. This position demands a unique blend of technical acumen, analytical problem-solving skills, and a strong collaborative spirit. If you are passionate about building secure systems from the ground up, automating security workflows, and thrive in an environment that values continuous learning, innovation, and direct impact, Career.zycto offers an unparalleled opportunity to advance your career and make a significant difference. Join us in shaping the future of secure software delivery and become a key guardian of our digital assets.

Key Responsibilities

• Integrate and manage security tools (SAST, DAST, SCA) within CI/CD pipelines.
• Automate security testing, vulnerability remediation, and compliance checks.
• Conduct threat modeling and participate in security architecture reviews for new and existing systems.
• Implement and manage cloud security controls and configurations across platforms (e.g., AWS, Azure, GCP).
• Develop, enforce, and advocate for secure coding standards and best practices across engineering teams.
• Collaborate closely with development, operations, and security teams to embed security into every stage of the SDLC.
• Monitor, analyze, and respond to security incidents, ensuring timely resolution and root cause analysis.
• Perform periodic security assessments, vulnerability scans, and contribute to penetration testing efforts.
• Stay abreast of the latest security threats, technologies, and industry best practices to continuously improve our security posture.
• Educate and mentor engineers on DevSecOps principles, secure development practices, and security awareness.

Required Skills

• Proven professional experience as a DevSecOps Engineer or in a similar security-focused role.
• Strong understanding of CI/CD pipelines and automation tools (e.g., Jenkins, GitLab CI, Azure DevOps, CircleCI).
• Proficiency in scripting languages (e.g., Python, Bash, PowerShell) for automation tasks.
• Extensive experience with cloud platforms (AWS, Azure, GCP) and their native security services.
• Familiarity with containerization and orchestration technologies (e.g., Docker, Kubernetes, OpenShift).
• Solid understanding of network security, application security, data security, and identity & access management (IAM).
• Hands-on experience with security scanning tools for static, dynamic, and software composition analysis (SAST, DAST, SCA).
• Knowledge of security frameworks, industry standards, and compliance regulations (e.g., NIST, ISO 27001, GDPR, PCI DSS).
• Excellent problem-solving, analytical, and critical thinking skills.
• Strong communication and interpersonal skills, with the ability to collaborate effectively across diverse teams.

Preferred Qualifications

• Bachelor's or Master's degree in Computer Science, Information Security, or a closely related technical field.
• Relevant industry security certifications (e.g., CISSP, CCSP, AWS Security Specialty, Azure Security Engineer, OSCP).
• Experience with Infrastructure as Code (IaC) tools and practices (e.g., Terraform, CloudFormation, Ansible).
• A background in software development or operations engineering prior to specializing in security.
• Experience with security information and event management (SIEM) systems and security orchestration, automation, and response (SOAR) platforms.

Perks & Benefits

• Highly competitive salary package and performance-based bonuses.
• Comprehensive health, dental, and vision insurance plans.
• Generous paid time off, including annual leave, sick leave, and public holidays.
• Dedicated budget for professional development, certifications, and continuous learning opportunities.
• Access to cutting-edge tools, technologies, and a stimulating technical environment.
• A collaborative, inclusive, and supportive work culture.
• Modern, ergonomic office facilities located in the vibrant Como area of Perth.
• Regular team-building events, social gatherings, and company-sponsored activities.
• Opportunity to contribute to impactful and innovative projects that shape the future of secure software.
• Flexible work arrangements to support work-life balance.

How to Apply

Ready to make a significant impact as a DevSecOps Engineer at Career.zycto? We encourage you to click on the application link below to submit your resume and cover letter. We look forward to reviewing your application and exploring how your skills and passion for security can contribute to our team.

Apply Now