TOM SHAW is a cutting‐edge startup that leverages AI to provide real‐time insights into businesses' Human and Machine cyber risks. Its flagship cybersecurity platform, Noble1, analyzes millions of signals to help organizations identify and mitigate risks, while optimizing security investments. By providing targeted, real‐time Cyber Awareness Training, the platform ensures maximum impact. Additionally, its Stealth Connect platform secures connected assets, and its Automated Robotics solutions cater to air, land, and sea requirements. TOM SHAW is committed to empowering businesses with innovative tools to prioritize cybersecurity and manage risks effectively.
ABOUT THE ROLE
We're looking for a Cloud Security Engineer who thrives across the full breadth of modern enterprise security — SASE, zero‐trust networking, endpoint, email, and cloud workload protection. You'll operate a best‐in‐class toolset, own our AWS security posture, embed security into DevOps pipelines, and bring solid full stack awareness to help our React and Node.js engineering teams ship securely.
WHAT YOU'LL DO
* Administer Mimecast — email security, threat intelligence, and policy enforcement
* Operate Vectra AI NDR — threat hunting, model tuning, and SOC integration
* Manage SentinelOne XDR — endpoint policy, incident investigation, and automated response
* Administer Cato Networks SASE — SD‐WAN, ZTNA, cloud firewall, and security policies
* Support Netskope CASB/SSE — cloud app visibility, DLP, and secure web gateway
* Support OpenText TextServer for content intelligence and data classification
* Secure AWS environments: IAM, GuardDuty, Security Hub, WAF, Config, SCPs
* Embed security into CI/CD pipelines — SAST, secrets scanning, container security, IaC policy
* Conduct secure code reviews on React / Node.js applications; advise on OWASP, JWT/OAuth2, and secure API design for AWS-hosted apps
* Build and maintain Terraform / CloudFormation with security‐first patterns
* Lead vulnerability assessments, threat modelling, and pen‐test remediation cycles
WHAT YOU'LL BRING
* 3–6 years in cybersecurity, cloud security, or DevSecOps
* Hands‐on experience with Mimecast, SentinelOne, and Vectra AI — operational depth, not just familiarity
* Experience with Cato Networks SASE — SD‐WAN, ZTNA, or cloud firewall administration
* Working knowledge of Netskope CASB/SSE — cloud access policies, DLP, or SWG
* Exposure to OpenText TextServer and the broader OpenText security portfolio
* Strong AWS security fundamentals: IAM, VPC design, logging, and cloud‐native security services
* Working familiarity with React / Node.js — comfortable reviewing code for security issues and guiding developers on secure AWS‐hosted application patterns
* Solid grounding in OWASP Top 10, CSP, and secure API design principles
* Compliance framework knowledge: ISO 27001, SOC 2, NIST, or CIS
VENDOR TRAINING — HIGHLY VALUED
Formal or informal training on any platform below is a genuine differentiator. Completed, in‐progress, or self‐directed — please highlight it in your application.
* Netskope — Netskope Certified Cloud Security Administrator (NCCSA) or partner programme
* SentinelOne — SentinelOne Certified Professional (SSCP) or technical partner training
* Vectra AI — Vectra Certified Professional or SOC analyst training
* Mimecast — Mimecast Certified Administrator or partner programme
CERTIFICATIONS — STRONGLY RECOMMENDED
Not mandatory to apply — candidates holding these will be strongly preferred and fast‐tracked through our process.
* OpenText Certified Professional (or equivalent OpenText platform certification)
TECH STACK
$105,000.00 - $140,000.00 base + superannuation, based on experience
#J-18808-Ljbffr