AI Job Summary

At least 4 years hands-on security work, with significant focus on security engineering/building capabilities.
Experience designing, deploying, and operating EDR/SIEM&NGSIEM/SOAR, identity, MDM, email gateway, WAF, and GRC.
Build, tune, and own detections in SIEM/NGSiem and SOAR, expanding using non-NGSiem sources to reduce noise.

Role Type

Within Australia • Permanent • Full-time • Mid-level Senior

Description

Who we are

Employment Hero is on a mission to make employment easier and more valuable for everyone. Our Employment Operating System brings hiring, HR, payroll and benefits into an all-in-one solution.

Since our inception in 2014, we’ve scaled to a $2 billion valuation and gained a presence in 6 countries globally – Australia, New Zealand, Singapore, Malaysia, the UK and Canada. We now service over 300,000 businesses and more than 2 million employees.

The EH Way

At Employment Hero, we’re proud of our unique DNA, which we call The EH Way.

We are Mission First – everything we do (from what we work on, to how we allocate capital and where we focus) is driven by our Mission
We are Remote First – we champion a remote environment with a preference for asynchronous communication and a high degree of autonomy
We are AI First – we are committed to using AI to accelerate our mission; AI is not just a tool, it’s a fundamental part of how we operate, innovate, and scale
We are Apolitical – we do not take a position on political or social topics, unless it relates to our Mission
We Live by Our Values – we role model our values 100% of the time
We Expect High Performance – we set a high standard and we’re not satisfied with being average

This role

The Security Engineer sits at the design and build end of the security function — owning the systems, integrations, and processes that protect 1,700 employees and the businesses who trust us with their data. You will work alongside the SOC team (including our 24/7 AI SOC Analyst), Engineering, IT, and stakeholders across the business to ship security capability, not just maintain it.

Location and hours

Remote-first, based on the east coast of Australia, preferably Sydney, but open to candidates anywhere in the AEST / AEDT timezone. You will work primarily during Australian business hours, with occasional overlap into other regions for incident response, major change windows, and global SOC handover.

As a Security Engineer, you will be involved in:

Design, deploy, and operate security platforms across endpoint, identity, network, email, and cloud — translating business requirements into security architecture that engineering teams want to use.
Build, tune, and own detections in CrowdStrike NGSiem and our SOAR — and expand the set of detections our 24/7 AI SOC Analyst can enrich and confirm using non-NGSiem sources.
Design and implement AI workflows or tools that provide material benefit to the broader security team and EH as a whole
Run large security projects end-to-end: scope, stakeholder alignment, technical design, rollout, and operational handover to the SOC.
Understand unfamiliar systems quickly — assess them, identify security risk, design controls, and partner with system owners to remediate at the root cause.
Lead complex incident response activities and post-incident reviews, turning lessons learned into durable detections, controls, and runbooks.
Conduct cloud and SaaS security reviews against security-by-design principles.
Mentor SOC Analysts on detection engineering, automation, and investigation craft.
Identify opportunities to use AI to remove toil from the team — and build the tools, integrations, and workflows that make every analyst more effective.
Contribute to ISO 27001 / 27017 / 27018 control design and to the policies and standards that sit behind them.

Who you are

To thrive at Employment Hero, you’ll need to embody The EH Way – operating with focus, agility, and an obsession with impact. For this role, you’ll also bring

Demonstrated experience designing and operating modern security tooling end-to-end — EDR (CrowdStrike or similar), SASE / ZTNA (Cloudflare, Netskope), SIEM / NGSiem, SOAR, IDP (Google Workspace or Okta), MDM (Mac and PC), Email Gateway, WAF, and GRC.
A genuine working knowledge of AI tooling for security: where it helps, where it doesn’t, and how to integrate it safely. AI use is expected in this role and you are expected to find ways to use it to improve how the team operates.
Strong detection engineering capability — you can read a threat report, understand the relevant telemetry, and write or tune a detection that catches the behaviour without drowning the team in noise.
Hands-on experience building automation in SOAR or in code (Python, scripting, or low-code platforms) to eliminate repetitive work.
Demonstrated ability to own large, cross-functional projects — multi-month rollouts (SASE migration, IDP change, detection platform uplift) with stakeholders across engineering, IT, and business teams.
Solid incident response experience — investigations, containment, eradication, DR and BCP — and the ability to lead under pressure.
Knowledge of ISO 27001, 27017, and 27018, with the practical experience to contribute to control design rather than just evidence collection.
At least 4 years of hands-on security experience, with at least some of that in an engineering or build-focused capacity.
Strong collaboration and communication skills — you can challenge ideas, defend a design in front of senior engineering stakeholders, and explain risk to non-technical audiences.
A proactive mindset with a focus on continuous learning, staying current with cybersecurity trends.
Self-starting with ownership and accountability, taking initiative and driving projects to completion.
Industry certifications such as OSCP, GIAC (GCIH, GCDA, GCFA), CISSP, CISM, or equivalent are highly desirable.

What we can offer

At Employment Hero, we don’t just talk about a better way to work – we live it. Joining Employment Hero means

You will work remotely, with the flexibility to own your time and impact
You will access cutting-edge tools to amplify your work, knowledge and outputs
You’ll surround yourself with ambitious, outcome-driven colleagues who challenge you to do the best work of your life
You’ll own ESOP (employee share options) in one of the world’s fastest-growing tech companies
You’ll also have access to a wide range of benefits that includes – a very generous parental leave policy, subsidised egg freezing (so you can make the choice that’s right for you, on your terms), a WFH office expense budget, and outstanding learning & development opportunities

At Employment Hero, we are committed to safeguarding the privacy of your application data. To understand how we do so, you can read our Applicant Privacy Policy here employmenthero.com/legals/applicant-policy/

Employment Hero celebrates diverse perspectives and experiences, we invite people of all backgrounds and identities to apply for this position.

Company Overview

Employment Hero is the world’s first Employment Operating System: an end-to-end system built to make employment easier for everyone. From hired to retired, everything employment is managed in one place. Employment Hero helps over 300,000 businesses worldwide hire great people and manage everything from hiring, HR and payroll, through to rewards, recognition and offboarding —all automated behind the scenes. And for the 2M+ employees and jobseekers using Employment Hero, Employment OS is their work passport to unlock great job opportunities, manage work admin and grow their career.

Security Engineer (AU East) – Remote

Role Type

Description

Company Overview

Share this job