Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
CreditorWatch

Security Engineer – SaaS

CreditorWatch

Security Engineer responsible for enhancing security across SaaS platforms and internal environments. Joining a newly created team at CreditorWatch to operationalize and embed security practices.

Posted 6/5/2026full-timeSydney • 🇦🇺 AustraliaMid-LevelSeniorWebsite

Tech Stack

Tools & technologies
AWSCloudPythonSDLCSwitching

About the role

Key responsibilities & impact
  • Improve the security posture across our SaaS platforms, employee endpoints, and office networks.
  • Implement, tune, and operate enterprise security solutions including SSE, EDR, DLP, Email Security, and IAM.
  • Enhance threat detection and response capabilities, contributing to operational runbooks and owning security alert workflows.
  • Strengthen the security posture of our platform and SDLC through security reviews, threat models, risk-based assessments
  • Identify vulnerabilities and provide practical remediation strategies aligned to business impact.
  • Embed and operationalise security controls within CI/CD pipelines (SAST, SCA, secrets detection) with clear ownership, SLAs, and automated feedback loops.
  • Drive initiatives to harden the software supply chain and CI/CD infrastructure, enabling secure development and deployment practices.
  • Act as a trusted advisor to Engineering, providing guidance on secure development practices across CreditorWatch products and services.
  • Contribute to frameworks, guidance and tooling that enable engineers to safely adopt AI/ML capabilities in software development.
  • Mentor engineers and security champions to uplift security awareness and foster a proactive security culture.
  • Contribute to vulnerability management processes, ensuring findings are tracked, prioritised, and remediated in line with risk tolerance and SLOs.
  • Provide domain expertise in security-related incident response processes.
  • Support compliance and assurance activities (ISO 27001, SOC 2) where they intersect with engineering controls and evidence.

Requirements

What you’ll need
  • Demonstrated hands-on experience across multiple security domains, with the ability to operate as a broad generalist
  • Experience with application security practices, including secure code review, SAST/SCA tooling, threat modelling, and vulnerability management in cloud-native or SaaS environments
  • Working knowledge of cloud security (preferably AWS), including IAM, networking, and services such as Security Hub, Inspector, or GuardDuty
  • Experience embedding security into CI/CD pipelines and working closely with engineering teams to shift security left without impacting delivery
  • Familiarity with enterprise security tools such as EDR, SSE/SWG, DLP, email security, and ASPM platforms
  • Strong understanding of identity and access management concepts, including SSO (OAuth, OIDC, SAML), conditional access, and least privilege
  • Exposure to relevant compliance frameworks (e.g. ISO 27001, SOC 2, OWASP Top 10)
  • Ability to script or automate workflows using tools such as Python, Bash, or APIs
  • Strong communication skills, with the ability to translate security findings into practical guidance for engineers and articulate risk to non-technical stakeholders
  • A genuine interest in working across a broad range of security domains and context-switching as required.

Benefits

Comp & perks
  • Keep Active – All employees get a Fitness First Platinum gym membership.
  • Daily Fuel – Barista-made coffee, breakfast, snacks, lunches and drinks on us – we got you!
  • Phone Credits - We pay you $50 per month to put towards your plans - how good.
  • Wellness Days – Receive an additional day off each month. Whether you’re pursuing physical activities, cultivating your mental wellbeing or supporting your community… this is your time to switch off from work.
  • Monthly Massages – We offer monthly in-house massages to soothe those sore spots and tight knots. Poor posture? Stressful week? We get it.
  • Bonus Shares – We offer our dedicated employees’ performance-based bonuses. Our employees are also permitted to gain access to our bespoke Employee Share Scheme, giving you the rare opportunity to invest in a growing technology company.
  • Fun Activities – We love escaping the workplace to do fun stuff. Whether its pasta-making, sailing classes, touch footy, winery tours, go karting or relaxing on the company boat (yeah… we own a boat) – these monthly team building activities will keep you feeling valued and connected.
  • Legal Services – Our employees get access to free legal services – from conveyancing and property advice to legal assistance around wills, trusts, powers of attorney and more. We make life easier for you, saving you time, money and unnecessary headaches.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
SASTSCAEDRDLPEmail SecurityIAMcloud securityvulnerability managementsecure code reviewthreat modelling
Soft Skills
strong communication skillsmentoringproactive security culturetrusted advisorcontext-switching
Certifications
ISO 27001SOC 2