HiringCafe
Posted 1w ago

DevSecOps Engineer

@ Diraq
View All Jobs
Australia
HybridFull Time
Responsibilities:Governance & Risk alignment, Secure SDLC integration, Cloud security engineering
Requirements Summary:Secure AWS environments; IaC with Terraform/CloudFormation; integrate security into CI/CD; container security; logging/monitoring; ISO27001/NIST CSF; PCI DSS (preferred).
Technical Tools Mentioned:AWS, Terraform, CloudFormation, SAST, DAST, SCA, CI/CD, Docker, Kubernetes, CloudTrail, GuardDuty, Security Hub, IAM, KMS
Save
Mark Applied
Hide Job
Report & Hide
Job Description

Job description

Diraq is a deep‑tech company building scalable, fault‑tolerant quantum computing technology — work that sits at the intersection of advanced physics, engineering, and high‑performance computing. Our teams operate in a research‑intensive, high‑trust environment where precision, security, and reliability are essential to progress.

At Diraq, you’ll work closely with engineers, researchers, and operations teams in a collaborative, hands‑on environment where ownership is valued and impact is visible. We believe in building things properly from the ground up, taking a long‑term view, and empowering individuals to shape how the company operates as we scale. In this context, the DevSecOps Engineer plays a critical role in embedding security controls into software development and cloud operations, operationalising security requirements aligned to ISO 27001 and the NIST Cybersecurity Framework (CSF) 2.0 across the Govern, Identify, Protect, Detect, Respond, and Recover functions. This role acts as the technical bridge between Security/GRC and Engineering teams, enabling secure delivery without slowing innovation.
 

Job requirements

Technical Skills & Experience
  • Strong hands‑on experience securing AWS environments
  • Practical expertise with AWS security services, including IAM, SCPs, KMS, GuardDuty, and Security Hub
  • Experience implementing Infrastructure as Code using Terraform and/or CloudFormation
  • Proven ability to integrate security controls into CI/CD pipelines (SAST, DAST, SCA, policy checks)
  • Working knowledge of container security across Docker and Kubernetes environments
  • Experience designing and operating logging, monitoring, and alerting frameworks to support detection and response

🔐 Security & Governance Knowledge
  • Demonstrated experience implementing and operationalising ISO 27001 controls
  • Ability to map technical controls to the NIST Cybersecurity Framework (CSF) 2.0
  • Familiarity with PCI DSS requirements (preferred)
  • Solid understanding of risk management, threat modelling, and control assurance

🎓 Preferred Certifications (Nice to Have)
  • AWS Certified Security – Specialty
  • ISO 27001 Lead Implementer or Lead Auditor
  • CISSP and/or CISM (beneficial but not required)

📊 What Success Looks Like
  • High percentage of CI/CD pipelines with automated security scanning and guardrails in place
  • Measurable reduction in security misconfigurations over time
  • Positive trends in audit findings and control effectiveness
  • Improved Mean Time to Detect (MTTD) security events
  • Increased automation coverage across security and compliance controls

Job responsibilities

1️ Governance & Risk Alignment (ISO 27001 / NIST CSF 2.0 – Govern, Identify)
• Translate security policies into automated technical controls
• Support risk assessments and threat modeling activities
• Implement control validation for ISO 27001 Annex A controls
• Maintain traceability between controls and cloud implementations
• Support audit evidence collection and control monitoring
 
2️ Secure SDLC Integration (Protect)
• Integrate SAST, DAST, and SCA tools into CI/CD pipelines
• Implement secure coding guardrails
• Manage secrets securely (vaulting, rotation, IAM roles)
• Embed security testing into automated release processes
• Develop reusable secure Infrastructure-as-Code (IaC) modules

3️ Cloud Security Engineering (Protect & Detect)
• Design and implement secure AWS architectures
• Enforce least privilege IAM policies
• Implement encryption standards using AWS KMS
• Configure logging and monitoring (CloudTrail, Security Hub, GuardDuty)
• Develop policy-as-code and compliance-as-code guardrails

4️ Continuous Monitoring & Detection (Detect & Respond)
• Enable centralized log collection
• Configure threat detection and alerting
• Integrate findings into incident response workflows
• Automate compliance checks and drift detection

5️ Collaboration & Enablement
• Conduct secure architecture reviews
• Train engineering teams on secure cloud patterns
• Support DevOps automation with security best practices
• Act as an enabler, not a gatekeeper

Job benefits

  • Stunning central Sydney CBD office with great amenities.
  • Paid time off to volunteer for causes you care about.
  • Eligibility to participate in our equity incentive plan.
  • Work alongside world experts in quantum computing and a visionary SLT.
  • A dynamic, supportive, and fast-paced environment with room to grow.
  • Exposure to cutting-edge tech and the opportunity to shape how it reaches the world.