Cloud Security Engineer

Every time a house is bought, sold or refinanced in Australia your lawyer, conveyancer and lender will most likely use a digital platform to settle your property, this is where we come in. PEXA’s world-first digital settlement platform has revolutionised the way we exchange property in Australia helping over 20,000 people a week safely settle their homes.

 

Since starting our journey in 2010, we now employ a team of over 1,000 people working across multiple continents. We’re still growing, innovating and looking ahead, but behind our greatest achievements, there is a team of curious creators and big thinkers. That’s why, we’re looking for ambitious people like yourself to join the team.

 

A day in the life

                         

• Work closely with engineers, architects, and product teams to strengthen the security of our cloud environments
• Monitor, detect, and respond to security threats — investigating issues and helping teams resolve them quickly and effectively
• Configure and improve cloud security controls across AWS and Azure, including identity, access, network, and data protection
• Fine-tune firewalls, WAFs, and network configurations to ensure strong perimeter security
• Build and automate security controls using Infrastructure-as-Code and integrate them into CI/CD pipelines
• Review vulnerabilities, coordinate patching, and help teams improve how they manage risk day-to-day
• Contribute to incident response and post-incident reviews, helping prevent future issues
• Create and maintain clear documentation, runbooks, and reporting that help teams stay secure and informed

• Partner with teams across Australia and the UK to embed secure-by-design thinking into how products are built

 

 

About the role 

 

This role exists to strengthen and continuously improve PEXA’s cloud and network security posture — ensuring our platforms remain secure, resilient, and ready to scale. You’ll play a hands-on role in protecting critical systems while helping teams adopt better, more secure ways of working

 

 

Key capabilities for success:

 

• Cloud security engineering across AWS/Azure and network controls
• Automation and DevSecOps integration
• Threat detection, incident response, and vulnerability management
• Stakeholder collaboration and security advocacy

 

What success looks like (6–12 months):                    

 

• Strengthened cloud security controls across AWS/Azure environments, with clear improvements in risk posture
• Embedded security guardrails into CI/CD pipelines through automation and Infrastructure-as-Code
• Improved detection and response capability, reducing time to identify and remediate threats
• Established strong working relationships with engineering and product teams, influencing secure design decisions
• Delivered clear, actionable security reporting and contributed to a culture of continuous improvement
• Helped uplift team awareness and capability around secure development and operations