Profectus is seeking Expressions of Interest from DevSecOps Engineers to support anticipated opportunities across multiple Australian Government departments and the broader national security community. These roles are expected to embed security into delivery pipelines and enable secure-by-design engineering across complex government technology environments. Opportunities are most likely to be Canberra-based, with potential requirements emerging across other locations nationally. We are interested in hearing from engineers who are passionate about shifting security left, automating guardrails, and giving delivery teams a safe, repeatable path to production within secure and classified environments.
Key Responsibilities
* Build and operate secure CI/CD pipelines for Australian Government clients
* Embed security tooling into pipelines (SAST, DAST, SCA, IaC scanning, secret scanning, container scanning)
* Implement policy-as-code and guardrails using tools such as OPA, Sentinel, or Azure Policy
* Engineer secure container and Kubernetes platforms, including supply chain security and image hardening
* Build automated compliance evidence, audit trails, and assurance artefacts
* Support secrets management, key management, and credential hygiene practices
* Engage with delivery, platform, cyber, and architecture teams to embed secure-by-design practices
* Document pipeline designs, runbooks, and operating procedures suitable for accreditation
Required Experience
* Demonstrated DevSecOps, platform engineering, or secure delivery experience in enterprise environments
* Hands‐on experience building CI/CD pipelines (Azure DevOps, GitHub Actions, GitLab CI, Jenkins)
* Experience integrating security tooling into pipelines (SAST, DAST, SCA, container scanning)
* Working knowledge of infrastructure‐as‐code (Terraform, Bicep, ARM, CloudFormation)
* Experience working within Australian Government or other regulated environments
* Strong scripting and automation skills (Bash, PowerShell, Python, or similar)
* Prior experience delivering secure pipelines within classified Australian Government environments
* Experience with policy‐as‐code (OPA, Sentinel, Azure Policy) and compliance automation
* Familiarity with the ISM, Essential Eight, and supply chain security guidance (e.g. SLSA, NIST SSDF)
* Experience with container security, image signing, and Kubernetes hardening (CIS benchmarks)
* Exposure to threat modelling, secure coding, and software supply chain risk management
* Working knowledge of cloud security guardrails (Azure, AWS, GCP)
Certifications (Highly Regarded)
* Microsoft Azure certifications (AZ‐400 DevOps Engineer, AZ‐500, AZ‐104)
* AWS DevOps Engineer or Security Specialty
* HashiCorp Certified: Terraform Associate or Vault
* Certified Kubernetes Administrator (CKA) or Certified Kubernetes Security Specialist (CKS)
* GitHub Actions or GitLab certifications
* CompTIA Security+ or equivalent
Security Requirements
* Must be an Australian Citizen
* Must have the ability to obtain a Negative Vetting Level 1 (NV1) clearance
* Existing NV1 or NV2 clearance is highly regarded
Working Arrangements
* Predominantly Canberra‐based roles within secure Australian Government environments
* Onsite work is expected for most opportunities, including engagement on classified networks
Why Profectus
Profectus partners with the Australian Government to deliver trusted capability across complex, secure, and classified environments. We take a long‐term, relationship‐driven approach, supporting our people across the full lifecycle of their engagement while contributing to outcomes of national importance. We are focused on building a strong network of cleared professionals to support upcoming demand across the Commonwealth and the broader national security community, and encourage Expressions of Interest from individuals seeking meaningful, impactful work in the national security domain.
#J-18808-Ljbffr