Droneshield
Senior Corporate Security Engineer (USA)
Droneshield, Warrenton, Virginia, United States, 22186
Work with cutting edge technology, making the world a safer and more secure place. DroneShield (ASX:DRO) offers an opportunity to solve some of world's most challenging technical problems in the Electronic Warfare, Artificial Intelligence and Machine Learning, RF sensing, Sensor Fusion and distributed systems. Working with high profile customers across militaries, government agencies, airports, critical infrastructure, law enforcement and many others, in over 70 countries around the world.
Be part of a well-funded and agile organization, as a valued member of an autonomous, cross-functional team. We have a flat organizational structure, and the best candidates will be both creative lateral thinkers and doers. Our technical pursuits require us to take advantage of the absolute latest in technology and best practices to remain competitive.
The position will report to the Director of Engineering (US).
This role will be a key position within the DroneShield global security team.
About the role
DroneShield is seeking a Senior Corporate Security Engineer with relevant experience to join the Security team in Sydney, NSW.
The Security team is a nimble team responsible for protecting DroneShield's assets and users. Our adversaries are sophisticated and use state-of-the-art tooling. To protect DroneShield, we need to focus on the biggest risks, eliminate threats, focus on automation to scale our efforts and continually increase the cost for the attackers.
Key responsibilities for this role include owning and improving our existing corporate solutions, deploying new controls on laptops, and partnering with Detection & Response to create detections. This role will also be influencing controls on office networks, data centers and remote access for our internal infrastructure.
Corporate Security should be viewed as a partnership with IT and Detection & Response, with each team enabling each other to be more effective. IT builds the foundational tools for asset management and internal services, Corporate Security automates deployment of security controls and enables telemetry, so that Detection & Response can create detections and playbooks to respond to incidents effectively.
This role requires experience with programming and automation. The ideal candidate will also have experience or ideas on how to leverage LLM to make our team more effective.
Strong communication skills and being a hands-on engineer are a must have.
Responsibilities, Duties and Expectations
Ensure secure design and operations of the Corporate IT network and all End User Computing devices Oversee the Security of SaaS applications and Cloud services including AWS Ensure compliance with DroneShield Security Polices and best practice Secure Microsoft Tennant, M365 and Identity Access Management including Privileged access Participate in global security Detection and Response processes Lead or assist in incident response efforts including containment, eradication and recovery Have a broad understanding of new and emerging technologies and associated vulnerabilities to help mitigate against them. Implement and review security practices used within the organisation. Provide training and guidance on standards and practises to the wider teams. Qualifications, Experience and Skills
BS degree in Computer Science, Information Technology or similar technical field of study or equivalent practical experience. Demonstrated experience working in IT with focus on security tooling. On-the-tools engineering experience - must be hands-on. Excellent communication skills to explain complex technical concepts. Strong problem-solving and analytical skills. Minimum 5 years' experience in related roles. Roles could include: IT Engineer System Administrator Security Engineer Knowledge of the following is essential: Strong knowledge of Corporate IT environments including M365, EntraID and SaaS platforms Experience managing MDM and MAM solutions Familiar with incident response processes and best practices Understanding of identity and access management principles Broad understanding of Hardening tools, technologies and processes. Experience with some level of automation and scripting (PowerShell, Go, Python, Bash) Knowledge of the following is desirable: Knowledge of compliance frameworks such as NIST series, ISO 27001 and CMMC Hands on experience with security tools such as SIEM and EDR Ability to think creatively to identify potential security vulnerabilities. Infrastructure as Code and experience with hybrid cloud environments Have experimented on leveraging LLM for automation. Systems thinking- focus on design solutions that improve the system
Note for recruitment agencies: we do not accept floated candidates from external recruiters unless they were instructed to do so.
Be part of a well-funded and agile organization, as a valued member of an autonomous, cross-functional team. We have a flat organizational structure, and the best candidates will be both creative lateral thinkers and doers. Our technical pursuits require us to take advantage of the absolute latest in technology and best practices to remain competitive.
The position will report to the Director of Engineering (US).
This role will be a key position within the DroneShield global security team.
About the role
DroneShield is seeking a Senior Corporate Security Engineer with relevant experience to join the Security team in Sydney, NSW.
The Security team is a nimble team responsible for protecting DroneShield's assets and users. Our adversaries are sophisticated and use state-of-the-art tooling. To protect DroneShield, we need to focus on the biggest risks, eliminate threats, focus on automation to scale our efforts and continually increase the cost for the attackers.
Key responsibilities for this role include owning and improving our existing corporate solutions, deploying new controls on laptops, and partnering with Detection & Response to create detections. This role will also be influencing controls on office networks, data centers and remote access for our internal infrastructure.
Corporate Security should be viewed as a partnership with IT and Detection & Response, with each team enabling each other to be more effective. IT builds the foundational tools for asset management and internal services, Corporate Security automates deployment of security controls and enables telemetry, so that Detection & Response can create detections and playbooks to respond to incidents effectively.
This role requires experience with programming and automation. The ideal candidate will also have experience or ideas on how to leverage LLM to make our team more effective.
Strong communication skills and being a hands-on engineer are a must have.
Responsibilities, Duties and Expectations
Ensure secure design and operations of the Corporate IT network and all End User Computing devices Oversee the Security of SaaS applications and Cloud services including AWS Ensure compliance with DroneShield Security Polices and best practice Secure Microsoft Tennant, M365 and Identity Access Management including Privileged access Participate in global security Detection and Response processes Lead or assist in incident response efforts including containment, eradication and recovery Have a broad understanding of new and emerging technologies and associated vulnerabilities to help mitigate against them. Implement and review security practices used within the organisation. Provide training and guidance on standards and practises to the wider teams. Qualifications, Experience and Skills
BS degree in Computer Science, Information Technology or similar technical field of study or equivalent practical experience. Demonstrated experience working in IT with focus on security tooling. On-the-tools engineering experience - must be hands-on. Excellent communication skills to explain complex technical concepts. Strong problem-solving and analytical skills. Minimum 5 years' experience in related roles. Roles could include: IT Engineer System Administrator Security Engineer Knowledge of the following is essential: Strong knowledge of Corporate IT environments including M365, EntraID and SaaS platforms Experience managing MDM and MAM solutions Familiar with incident response processes and best practices Understanding of identity and access management principles Broad understanding of Hardening tools, technologies and processes. Experience with some level of automation and scripting (PowerShell, Go, Python, Bash) Knowledge of the following is desirable: Knowledge of compliance frameworks such as NIST series, ISO 27001 and CMMC Hands on experience with security tools such as SIEM and EDR Ability to think creatively to identify potential security vulnerabilities. Infrastructure as Code and experience with hybrid cloud environments Have experimented on leveraging LLM for automation. Systems thinking- focus on design solutions that improve the system
Note for recruitment agencies: we do not accept floated candidates from external recruiters unless they were instructed to do so.