Senior Security Engineer (Third-Party Risk Management)

Australia • Sydney
Atlassian
Type: Full-time
Atlassian
Level: Junior Level
Salary:
2 years ago
Deadline: 2021-12-11

Job Description

Atlassian can hire people in any country where we have a legal entity, assuming candidates have eligible working rights and a sufficient timezone overlap with their team. As our offices re-open, Atlassians can choose to work remotely or return to an office, unless it’s necessary for the role to be performed in the office. Interviews and onboarding are conducted virtually, a part of being a distributed-first company. With a sufficient timezone overlap with the team, we’re able to hire eligible candidates for this role from any location in Australia and New Zealand. If this sparks your interest, apply today and chat with our friendly Recruitment team further. The Corporate Security team at Atlassian seeks to enable foundational teams such as IT, Business Systems, Finance, Legal, People, and Customer Support, to have ability to execute on their initiatives without compromising security. In order to do this, CorpSec engineers are security all-rounders who are able to consider risk, make tradeoffs and implement effective security controls across Atlassian while working closely with these teams. The third-party risk management program was created to help implement vendor solutions securely and manage the risk of potential compromise to our critical vendors. You’ll be working to ensure the suppliers we use meet or exceed our security requirements, guide Atlassians through the setup process and follow up in the case of security incidents. As part of the focus on learning at Atlassian, you'll be able to spend up to 20% of your time on independent research during our monthly innovation weeks. We’re looking for individuals who can adapt quickly, be flexible and enjoy working in a variety of areas. To be successful, you must thrive on autonomy and open work.

Job Requirement

In this role you'll get to:
  • Be a technical lead that drives decision making and outcomes for the third-party risk management program;
  • Perform vendor risk assessment for third-party solutions that address security threats;
  • Review security language in supplier contracts and provide guidance aligned with security requirements;
  • Work with internal stakeholders to ensure they are using the vendor in a way that reduces risk to the organisation.
  • Work cross functionally with departments including Procurement, Legal and Risk and Compliance.

  • On your first day, we’ll expect you to have:
  • Experience working in cyber security;
  • An ability to reason about security decisions;
  • Experience determining security maturity of third parties/developing security risk profiles;
  • Hands on experience with penetration testing, threat modelling or design reviews;
  • Familiarity with standard security certification and compliance mechanisms such as ISO, SOC 2, FedRAMP and HIPAA;
  • Previously worked with a large variety of SaaS tools (Salesforce, Workday, Jira etc); and
  • Strong collaboration and interpersonal skills.
  • It's great, but not required, if you have:
  • Experience working with TPRM tooling such as SecurityScorecard, Bitsight, Aravo and/or Upguard;
  • Proficiency in at least one programming language (e.g. Python, Golang, Java etc.);
  • An interest in software supply chain security;
  • Experience with Cloud and CI/CD technologies such as AWS, Azure, GCP, Bitbucket, Jenkins etc.
  • Experience in a large scale cloud business; or
  • The ability to thrive in a remote working environment.
  • Company Introduction

    Atlassian
    本地公司
    Atlassian是一家澳大利亚软件企业公司,主要为软件开发者及项目经理设计软件。这公司的主力产品为专门用作追踪应用程序问题的JIRA,还有用作协作团队的产Confluence。现时,Atlassian在全球的客户有超过6万家。Atlassian的总部设于新南威尔士州的首府悉尼,不过在欧洲的阿姆斯特丹和北美洲的旧金山亦有办事处。在2014年9月,公司有雇员1,148名,办事处位于12个城市,超过四万名客户及数以百万计的用户。2014年2月14日,Atlassian的总裁Jay Simons宣布在美国德萨斯州首府奥斯汀开设新的办事处,并会聘请600名员工。
    logo

    Follow Us

    linkedinfacebooktwitterinstagramweiboyoutubebilibilitiktokxigua

    We Accept

    /image/layout/pay-paypal.png/image/layout/pay-visa.png/image/layout/pay-master-card.png/image/layout/pay-stripe.png/image/layout/pay-alipay.png

    地址

    Level 10b, 144 Edward Street, Brisbane CBD(Headquarter)
    Level 8, 11 York st, Wynyard, Sydney CBD
    Business Hub, 155 Waymouth St, Adelaide SA 5000

    Disclaimer

    footer-disclaimerfooter-disclaimer

    JR Academy acknowledges Traditional Owners of Country throughout Australia and recognises the continuing connection to lands, waters and communities. We pay our respect to Aboriginal and Torres Strait Islander cultures; and to Elders past and present. Aboriginal and Torres Strait Islander peoples should be aware that this website may contain images or names of people who have since passed away.

    匠人学院网站上的所有内容,包括课程材料、徽标和匠人学院网站上提供的信息,均受澳大利亚政府知识产权法的保护。严禁未经授权使用、销售、分发、复制或修改。违规行为可能会导致法律诉讼。通过访问我们的网站,您同意尊重我们的知识产权。 JR Academy Pty Ltd 保留所有权利,包括专利、商标和版权。任何侵权行为都将受到法律追究。查看用户协议

    © 2017-2024 JR Academy Pty Ltd. All rights reserved.

    ABN 26621887572