Our Company
Bastion Technology Services is a proudly Australian cyber security and technology consultancy, established with a clear purpose: to help organisations achieve their business objectives safely and securely.
We are experts in building cyber resilience. Bastion works with government, critical infrastructure, utilities, and large enterprises to protect systems, data, and operational environments against real-world threats. Our work spans governance, risk and compliance, cloud and network security, OT and industrial environments, and specialist cyber advisory services.
Because we are local, we work closely with our customers, often side by side, to understand their environment, constraints, and priorities. We focus on practical, defensible outcomes that stand up in complex operational settings, not theoretical solutions or one-size-fits-all approaches.
Trust, accountability, and quality underpin everything we do. We take ownership of our commitments and pride ourselves on delivering work that customers can rely on.
Our People
Bastion's team is made up of experienced cyber security and technology specialists selected for their depth of expertise, technical capability, and ability to operate confidently in complex environments.
Our consultants work across IT and OT domains and are trusted to deliver outcomes in safety-critical, regulated, and high-risk environments. We value people who can balance strong technical judgement with an understanding of business and operational realities, and who take responsibility for the quality of their work.
As part of Bastion, you will work alongside senior architects, security specialists, and advisors who are collaborative, pragmatic, and supportive. We encourage knowledge sharing, professional growth, and thoughtful challenge, always with a focus on doing what is right for the customer.
You'll have the opportunity to contribute to meaningful work across a diverse customer base, while being part of a close-knit, values-led team that genuinely backs its people.
The Role
We're seeking a skilled and customer-centric Cloud Security Engineer to lead secure cloud architecture initiatives, drive compliance assessments, and embed security into DevOps pipelines. You'll work closely with clients to advise on best practices for building and securing cloud environments—primarily on Microsoft Azure.
Key Responsibilities
* Cloud Security Architecture
* Design and implement secure cloud solutions on Azure (primary) and AWS (secondary)
* Apply security principles across IaaS, PaaS, and SaaS deployments
* Integrate security controls into CI/CD pipelines (DevSecOps)
* Conduct cloud compliance assessments (e.g., ISO 27001, NIST, CIS, SOC 2)
* Map regulatory requirements to technical controls
* Develop and review secure IaC templates (Terraform, Bicep, ARM, CloudFormation)
* Implement policy-as-code using tools like Azure Policy, Sentinel, or Open Policy Agent/Kubernetes
* Customer Engagement
* Collaborate with clients to understand business needs and translate them into secure cloud solutions
* Deliver technical workshops, training, and advisory sessions
* Provide clear, actionable guidance on cloud security posture improvement and security best practices
* Promote secure identity and access management (e.g., Azure AD, IAM roles)
* Recommend secure networking patterns (e.g., private endpoints, NSGs, firewalls)
* Guide customers on data protection, encryption, and key management
* Stay current with evolving threats and cloud-native security services
Requirements
* Demonstrated experience in cloud security or related engineering roles
* Deep expertise in Microsoft Azure security services (Defender, Sentinel, Key Vault...)
* Ideally working knowledge of AWS security fundamentals
* Hands-on experience with DevSecOps tools (e.g., GitHub Actions, Azure DevOps...)
* Proficiency in IaC (Terraform, Bicep, ARM templates)
* Familiarity with compliance frameworks (ISO, NIST, CIS Benchmarks)
* Strong communication and stakeholder engagement skills
Why Join Us
* Play Uno, maybe even win at Uno
* Work on mission-critical systems that impact national infrastructure
* Be part of a forward-thinking, fun team driving innovation in cybersecurity
* Competitive compensation and professional development opportunities