“It begins at Bendigo Bank”

We’ve never been ‘just a bank’. Just like you should never be ‘just an employee’. We’re united in our belief that in banking, better can be bigger, and together we’re making it happen.

It starts here. With Bendigo Bank… and you.

About the opportunity

Protect our bank and our customers by ensuring products are secure before being released into production. In this role you will focus on Application Security, Cloud Security Posture Management, and Vulnerability Disclosure Program management across development and engineering. You will also be responsible for security advisory and building security as code to engineer solutions across technology with specific focus on the areas of Cloud and Application Security to manage Cyber risks.

You will get the opportunity to work with the newest technologies, whilst also having access to learning and development platforms plus the opportunity to get certified in cloud technologies.  Our community is a place to thrive in if you enjoy working in a changing environment and thinking of creative solutions.

In this role you’ll get to…

• Enable Secure Development (DevSecOps) practices by embedding Static Application Security Testing (SAST), Software-Composition Analysis (SCA), Infrastructure as Code scanning (IAC) and Dynamic Application Security Testing (DAST) on Application and Infrastructure artifacts within CI/CD pipelines.
• Uplift Cloud Security Posture Management (CSPM) capability through tuning risky configuration detection policies and prescribing and codifying guardrails for secure configuration of cloud infrastructure.
• Build repeatable Security requirements into codifiable engineering patterns using a Security as Code approach.
• Support the management of Vulnerability Disclosure Program and build processes to manage findings.
• Perform Security Configuration reviews and provide security best practice guidance.
• Embed automation where required to remove manual intervention and speed up security issue detection and management.

What you’ll bring to the role

To be successful in the role you will have:

• Experience as a Developer or previously worked closely with Developers to build secure Applications.
• Experience with Static and Dynamic Analysis tools and the implementation within build pipelines.
• Understanding of Security Guardrails of Cloud Platforms
• Experience in Infrastructure as coding or deployments of Cloud workloads
• Experience in the use Cloud Security Posture Management (CSPM) or Cloud Native Application Protection Platforms (CNAPP) tools.
• Experience with container technologies (Docker/Kubernetes) and use of cloud services.
• Understanding of secure coding and secure coding reviews.

So, why work with us?

• Want big impact that matters? Here, you’ll know your work directly benefits the customers and communities we all serve.
• Want to be more than just a number? Join a team that truly values you – and that gets more and more diverse every day.
• Want career opportunity AND flexibility? Achieve both here, where we know that balance and progression go hand in hand.

You’ll also get access to a great range of benefits, including:

• Hybrid work? Flexible hours? A compressed work week? Our flexible work options are designed to suit your life.  This role can be based in any of our office locations in Melbourne, Sydney, Brisbane, Bendigo, or Adelaide. We offer flexible work options that put our people first, and a hybrid model with at least 60% of your working week spent in the office.
• Health and well-being support, including discounted gym memberships, private health insurance options, and our Employee Assistance Program (EAP) for you and your immediate family members.
• Take your learning to the next level through opportunities like our corporate university ‘BEN U’ or at an external provider of your choice.

We’re making better, bigger. And we’ll get there with you

Could you be our newest team member? Now’s the time to set your sights even higher – on the future you and the future career you deserve.  Please note shortlisting and interviews may take place prior to the advertised close date, so don't delay apply now!

We believe a diverse workforce supported by an inclusive culture is central to our success and we actively encourage applications from those who bring diversity of thought to our business. We support candidate requests for adjustment to accommodate an illness, injury, or disability to equitably participate in the selection process.

Still in two minds?  

Research suggests 60% of women and underrepresented groups might stop here, even after getting as far as drafting an application. We believe that diversity makes every team stronger, so even if you don’t tick every box we still want to see your application!

We love the support recruitment agencies give our businesses every day, however, we have got this.  Our superstar talent advisors will reach out to our fabulous panel if we need a helping hand.