The Company

This company is a leader in the live entertainment and ticketing space, powering secure transactions and seamless digital experiences for events that bring people together. With a culture built on innovation and trust, they’re scaling fast and embedding security at every layer of their cloud-based platform. Their tech team thrives on ownership, autonomy, and tackling challenges that matter—keeping customer data safe, systems resilient, and delivery pipelines humming.

The Role

As a DevSecOps Engineer, you'll play a hands-on role in embedding security directly into the build and deployment process. Working closely with product, data, and engineering teams, you'll secure CI/CD pipelines, implement cloud security best practices, and enhance monitoring and incident readiness. This is not a reactive role—it's about designing secure systems from the start and leading the shift-left security mindset across the business.

Key responsibilities include:

• Strengthening and automating security across CI/CD pipelines using tools like GitHub Actions, Snyk, and Trivy.
• Managing and securing AWS infrastructure using Terraform.
• Implementing threat detection and response (CrowdStrike, SentinelOne) and leveraging SIEM tools for security visibility.
• Driving privacy and compliance efforts across frameworks including PCI-DSS and ISO 27001.
• Championing DevSecOps practices and mentoring others in secure coding and design.

About You

You’re a seasoned DevSecOps or Security Engineer with a strong grasp of cloud architecture, automation, and proactive threat management. You understand that real security happens upstream—and you’ve got the initiative, skills, and mindset to make it happen. You enjoy collaborating across teams and are equally comfortable diving into Terraform as you are reviewing secure code or explaining risks to stakeholders.

Skills & Experience

• 4–6+ years in DevOps or Security Engineering roles.
• Strong AWS cloud experience and proficiency with Terraform or other IaC tools.
• Hands-on security tooling experience across CI/CD, XDR/EDR, and SIEM platforms.
• Good working knowledge of container security (Docker, Kubernetes optional).
• Familiarity with the OWASP Top 10, MITRE ATT&CK, and secure SDLC.
• Bonus if you’ve worked in high-transaction environments (e.g. ecommerce or ticketing) or have PCI-DSS, SOC 2 exposure.
• Relevant certifications (e.g. AWS Security, CKS, CISSP) highly regarded.

What’s on Offer

• Flexible hybrid or remote-first working arrangements.
• Opportunity to lead and scale security practices across a modern tech stack.
• Work on a product people use to access the things they love—every day.
• Competitive salary and professional development budget.
• Strong, collaborative engineering culture with real autonomy.

Apply Now

If you're ready to build security into something people rely on and love, we want to hear from you. Click “Apply Now” or reach out to Ben Griffiths at the P&C Partners Brisbane office for a confidential chat - [email protected]