Staff Engineer - Platform Engineering Security Specialist

Employment Type

Closing Date

Job Title

Job Summary

Job Description

Focus of the Role

As a Platform Engineer with security focus, you will collaborate with cross functional teams to design, implement, and optimise security controls, ensuring the security, reliability, and performance of our platform infrastructure. You will be responsible for integrating security into the platform engineering lifecycle, driving the automation of security processes, and responding to emerging security threats. The ideal candidate will have a strong background in platform engineering and a deep understanding of security principles.

What You’ll Do

• Design and implement secure platform solutions across cloud and hybrid environments.

• Develop and enforce security controls, such as identity and access management, encryption, firewalls, and threat monitoring, ensuring the platform meets both security and compliance requirements.

• Integrate security into CI/CD pipelines and DevOps processes to ensure secure application deployment.

• Conduct regular security audits and vulnerability assessments of platform infrastructure, applications, and systems.

• Ensure that platform components adhere to internal security standards and regulatory compliance requirements (e.g., GDPR, PCI DSS, SOC 2).

• Work with internal teams to ensure the platform meets data protection and privacy standards.

• Implement Infrastructure-as-Code (IaC) practices, ensuring secure and compliant platform deployment.

• Contribute to the development of cloud services, infrastructure policies and design patterns with built-in security guard rails.

• Leverage security best practices to implement controls and governance across cloud infrastructure, ensuring compliance with security standards.

About You

Essential:

• Proven experience as a Platform Engineer or DevOps Engineer with a strong focus on security.

• In-depth knowledge of platform infrastructure, cloud environments (Azure, AWS, GCP), and containerization (Docker, Kubernetes)

• Proven experience as a Platform Engineer or similar role, with a focus on Kubernetes and EKS managed services.

• Experience with DevSecOps practices, including secure CI/CD pipeline integrations.

• Proficiency in scripting languages such as Python, Shell for automation and security-related tasks.

• Experience with Infrastructure-as-Code (IaC) tools such as Terraform, CloudFormation, ARM and Ansible.

• Understanding of Cloud security controls and the ability to implement security best practices for cloud infrastructure.

• Familiarity with security testing and vulnerability scanning tools

• Implement observability solutions using Open Telemetry, New Relic, Splunk, Prometheus, Grafana, and other monitoring tools.

• Ensure the security of the platform by implementing best practices and compliance measures.

• Strong understanding of security best practices and frameworks (e.g., CIS, NIST, ISO 27001).

• Experience with identity and access management (IAM), firewall management, intrusion detection systems (IDS), and security incident response

• Strong scripting skills in languages such as Bash, Python, or Go.

• Understanding of network topologies, protocols, and services.

• Experience working in an agile or DevOps-driven environment.

• Strong problem-solving skills and the ability to diagnose and resolve complex technical issues.

• Strong communication and collaboration skills, capable of working with both technical and non-technical teams.

• Knowledge of local and international security regulations and compliance frameworks (e.g., GDPR, SOC 2, PCI-DSS, HIPAA).

Preferred:

• Experience: 15 + years of industry experience in the platform engineering with deep understanding of security principles.

• Education: Bachelor’s degree in computer science, Engineering, Information Security, or a related field (or equivalent work experience).

• Certifications: Certifications such as Certified Cloud Security Professional (CCSP), Certified Ethical Hacker (CEH), or similar security certifications

• Knowledge of certificate life cycle management (ACME, mTLS )

We’re amongst the top 2% of companies globally in the CDP Global Climate Change Index 2023, being awarded an ‘A’ rating.  If you want to work for a company that cares about sustainability, we want to hear from you.

As part of your application with Telstra, you may receive communications from us on +61 440 135 548 (for job applications in Australia) and +1 (623) 400-7726 (for job applications in the Philippines and India).

When you join our team, you become part of a welcoming and inclusive community where everyone is respected, valued and celebrated. We actively seek individuals from various backgrounds, ethnicities, genders and abilities because we know that diversity not only strengthens our team but also enriches our work. We have zero tolerance for harassment of any kind, and we prioritise creating a workplace culture where everyone is safe and can thrive. 

As part of the hiring process, all identified candidates will undergo a background check, and the results will play a role in the final decision regarding your application.

We work flexibly at Telstra. Talk to us about what flexibility means to you. When you apply, you can share your pronouns and / or any reasonable adjustments needed to take part equitably during the recruitment process.