Launch Recruitment are working with a exciting organisation going through a large scale digital transformation project.The DevSecOps Engineer plays a critical role in overseeing the security, development and operation aspects of the digital development lifecycle and environment.Salary: $160,000 – $170,000 plus super (12.5%) Location: Melbourne Hybrid working; 3 days in the office, 2 days from home – Wednesday in the office The DevSecOps Engineer will have a deep understanding of DevSecOps principles along with expertise in cyber security practices.Effectively communicating complex technical concepts across different teams while driving initiatives to enhance overall security posture within a dynamic development environment.Reporting to the Cyber Security Manager you will work closely across the environment and with the wider IT team.Responsibilities Leading the implementation and maintenance of DevSecOps best practices within the business.Collaborating with development, operations, and security teams to integrate security controls into the software delivery process.Providing expertise in secure coding practices, vulnerability management, and threat modelling.Developing and maintaining automated security testing processes and tooling to identify and remediate vulnerabilities throughout the software development lifecycle.Managing and enhancing security toolsets for continuous monitoring and alerting.For example, utilisation of Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Interactive Application Security Testing (IAST) and Run-Time Application Security Protection (RASP) tooling.Participating in incident response activities and leading efforts to improve overall system resilience.Evaluating new technologies and tools to enhance the organisation's security posture.Mentoring team members on secure coding practices and promoting a culture of security awareness within the organisation.Oversee the creation of security policies and procedures and maintain documentation of security measures.Collaborate with stakeholders to select and implement DevSecOps tools and technologies.Continuously improve DevSecOps processes and stay updated with emerging trends.Skills and Experience Required Azure Certifications such as Microsoft Certified: Azure Developer Associate Microsoft Certified: Azure Solutions Architect Expert Microsoft Certified: Azure DevOps Engineer Expert Prior experience working within a DevSecOps team or implementing DevSecOps practices in an organisation Demonstrated success in designing and implementing scalable, secure, and resilient infrastructure solutions Proven track record of automating manual processes to improve efficiency and reliability Experience with application and infrastructure security advantageous.Experience working with agile methodologies and participating in agile ceremonies In-depth knowledge of security frameworks, tools and programming languages.Proficiency in scripting and automation using tools such as Ansible, Puppet, or Chef Expertise in containerization technologies like Docker and Kubernetes Ability to implement continuous integration/continuous delivery (CI/CD) pipelines Familiarity with infrastructure as code (IaC) concepts and tools like Terraform or CloudFormation Knowledge of security best practices in DevOps environments If you are interested to speaking to someone further, please do reach out Sophie Garrison: Cyber Security and GRC Specialist: ******