Job Description :
Security Architecture & Governance
- Define and operationalise security controls within application and container architectures to protect Telstra and customer assets.
- Drive security architecture standards and governance across major transformation initiatives.
- Contribute to security strategies, frameworks, and standards aligned to Telstra policies and industry frameworks (NIST, Zero Trust, Essential 8).
Application & Container Security Engineering
- Lead implementation of secure software supply chain controls across Build–Ship–Run lifecycle.
- Define and enforce controls for:
o SAST (Static Application Security Testing)
o SCA (Software Composition Analysis)
o DAST (Dynamic Application Security Testing)
- Integrate security into CI/CD pipelines with automated policy enforcement and break-build capability.
- Implement container security controls across:
o CI/CD pipelines (build-time scanning)
o Image registries (continuous scanning)
o Runtime environments (agent/enforcer-based protection)
- Establish container trust mechanisms, including:
o
