About the role DroneShield is seeking a Senior Corporate Security Engineer with relevant experience to join the Security team in Sydney, NSW. The Security team is a nimble team responsible for protecting DroneShield's assets and users. Our adversaries are sophisticated and use state-of-the-art tooling. To protect DroneShield, we need to focus on the biggest risks, eliminate threats, focus on automation to scale our efforts and continually increase the cost for the attackers. Key responsibilities for this role include owning and improving our existing corporate solutions, deploying new controls on laptops, and partnering with Detection & Response to create detections. This role will also be influencing controls on office networks, data centres and remote access for our internal infrastructure. Corporate Security should be viewed as a partnership with IT and Detection & Response, with each team enabling each other to be more effective. IT builds the foundational tools for asset management and internal services, Corporate Security automates deployment of security controls and enables telemetry, so that Detection & Response can create detections and playbooks to respond to incidents effectively. The ideal candidate will have a strategic view of IT and Detection & Response and will act as an enabler for both teams. This role requires experience with programming and automation. The ideal candidate will also have experience or ideas on how to leverage LLM to make our team more effective. Strong communication skills and being a hands-on engineer are a must have. Responsibilities, Duties and Expectations Automate and deploy security controls on our corporate infrastructure Own vulnerability management end-to-end for our corporate infrastructure Be up to update with vulnerabilities/CVEs and how to mitigate them Respond to security incidents involving corporate infrastructure Collect metrics, identify patterns and create actions based on them Lead our corporate security strategy Communicate to leadership about important metrics Manage multiple concurrent projects and solve cross-product problems Qualifications, Experience and Skills BS degree in Computer Science, Information Technology or similar technical field of study or equivalent practical experience. Demonstrated experience working in IT with focus on security tooling. On-the-tools engineering experience – must be hands-on. Excellent communication skills to explain complex technical concepts. Strong problem-solving and analytical skills. Minimum 5 years’ experience in related roles. Roles could include: IT Engineer System Administrator Security Engineer Knowledge of the following is essential: Experience with Windows, MacOS and Linux Experience managing MDM and MAM solutions Experience with Secure Remote Access approaches Reducing the attack surface through system hardening Automation experience, writing scripts in Go or Python Comfortable on the command line in a Linux first environment Threat Modelling – focusing on the threat, controls and mitigations. Knowledge of the following is desirable: Experience with XDR Ability to think creatively to identify potential security vulnerabilities. Infrastructure as Code and experience with hybrid cloud environments Have experimented on leveraging LLM for automation. Systems thinking: focus on design solutions that improve the system Note for recruitment agencies: We do not accept unsolicited candidates from external recruiters unless specifically instructed.
