• Join a leading Australian digital business with millions of customers and a highly recognisable consumer brand.
• Technology is at the core of the organisation, with a strong engineering culture and significant investment in cloud, DevSecOps and modern product development.
• Security is a strategic priority, with strong executive backing and the opportunity to shape application security practices at scale.

I'm partnering with a well-known Australian technology organisation to hire a Principal Application Security Engineer. This is a senior individual contributor role focused on embedding security across the software development lifecycle and driving the evolution of the organisation's Application Security framework.

You'll work closely with engineering teams, architects, product leaders and cyber security peers to ensure security is built into products from design through to deployment. This role is ideal for someone who enjoys a mix of hands-on technical work, strategic influence and mentoring others on secure development practices.

• 5+ years' experience in Application Security, Product Security or DevSecOps roles.
• Strong understanding of secure SDLC, threat modelling and secure coding practices.
• Experience performing code reviews and advising developers on remediation of vulnerabilities.
• Hands-on experience with CI/CD security tooling, including SAST, DAST and software composition analysis.
• Strong scripting and automation skills in languages such as Python, JavaScript, PowerShell or Java.
• Experience securing cloud-native environments, particularly AWS, along with container platforms such as Docker and Kubernetes.
• Relevant qualifications or certifications such as OSCP, GPEN or AWS Security Specialty are highly regarded.

• Lead threat modelling and security design reviews for new products and platform changes.
• Drive the implementation and adoption of key initiatives within the Application Security framework.
• Manage and optimise security tooling integrated into CI/CD pipelines.
• Partner with Engineering, GRC and Security Operations teams to strengthen security posture and support incident response.
• Act as a trusted advisor to developers and engineering leaders on secure development best practices.

• Opportunity to shape AppSec strategy within one of Australia's leading technology organisations.
• Flexible working arrangements and a collaborative, engineering-led culture.
• Competitive salary package, bonus and excellent long-term career growth opportunities.