Security Clearance Required for this role: This role will be open to Engineers who are based in Sydney, Brisbane, Melbourne, Canberra and Adelaide. Must have at least Baseline or Negative Vetting 1 (NV1) security clearance, NV2 preferred. Must be an Australian Citizen Join a high-performing team delivering cloud foundations for a major Australian Government program. You'll work with cutting-edge AWS services, modern IaC tooling, strong security frameworks, and multi-account architectures that challenge and grow your skills. What You’ll Do In this role, you’ll architect and automate secure AWS environments that meet strict government standards. You will: Design and deploy VPCs with strong network isolation — subnets, NACLs, routing, security groups, VPC endpoints. Build and refine IAM roles, policies, and SCPs to enforce access controls and compliance. Develop and maintain Azure DevOps CI/CD pipelines for AWS provisioning using Terraform, AWS CDK, or OpenTofu . Automate deployment of networking, IAM, logging (CloudTrail, VPC Flow Logs) and monitoring (CloudWatch, GuardDuty). Support LiteLLM gateway deployments , tagging standards, and cost-allocation frameworks. Implement secure connectivity patterns such as PrivateLink and VPC Peering . Contribute to onboarding automation using AWS Service Catalog or Control Tower . Ensure alignment with Australian Government ISM Protected cloud security requirements. What You’ll Bring Essential Proven experience delivering IaC-driven AWS environments via Azure DevOps and Terraform/CloudFormation/CDK/OpenTofu. Strong expertise in AWS networking — VPCs, routing, subnets, security groups. Deep understanding of IAM, SCPs, and identity governance . Proficiency with automation and scripting ( Python, Bash, PowerShell ). Understanding of pipeline security , governance, and DevSecOps best practices. Experience working in multi-account AWS environments / Landing Zones . Knowledge of Australian Government cloud security standards and compliance frameworks. Desirable Exposure to LiteLLM gateway deployment. Experience with hybrid or multi-cloud networking and secure connectivity models. Familiarity with Dynatrace observability , performance monitoring, or logging integrations. Perks in this role: Work on critical national-scale infrastructure with strong security and automation standards. Join a collaborative engineering team that values innovation, reliability, and clean automation. Use modern tools and patterns across multi-account AWS, IaC, secure networking, and observability.
