Cloud Security Engineer

Hi, we’re PEXA

Every time a house is bought, sold or refinanced in Australia your lawyer, conveyancer and lender will most likely use a digital platform to settle your property, this is where we come in. PEXA’s world-first digital settlement platform has revolutionised the way we exchange property in Australia helping over 20,000 people a week safely settle their homes.

Since starting our journey in 2010, we now employ a team of over 1,000 people working across multiple continents. We’re still growing, innovating and looking ahead, but behind our greatest achievements, there is a team of curious creators and big thinkers. That’s why, we’re looking for ambitious people like yourself to join the team.

A day in the life

Work closely with engineers, architects, and product teams to strengthen the security of our cloud environments

Monitor, detect, and respond to security threats — investigating issues and helping teams resolve them quickly and effectively

Configure and improve cloud security controls across AWS and Azure, including identity, access, network, and data protection

Fine-tune firewalls, WAFs, and network configurations to ensure strong perimeter security

Build and automate security controls using Infrastructure-as-Code and integrate them into CI/CD pipelines

Review vulnerabilities, coordinate patching, and help teams improve how they manage risk day-to-day

Contribute to incident response and post-incident reviews, helping prevent future issues

Create and maintain clear documentation, runbooks, and reporting that help teams stay secure and informed

Partner with teams across Australia and the UK to embed secure-by-design thinking into how products are built

About the role

This role exists to strengthen and continuously improve PEXA’s cloud and network security posture — ensuring our platforms remain secure, resilient, and ready to scale. You’ll play a hands-on role in protecting critical systems while helping teams adopt better, more secure ways of working

Key capabilities for success:

Cloud security engineering across AWS/Azure and network controls

Automation and DevSecOps integration

Threat detection, incident response, and vulnerability management

Stakeholder collaboration and security advocacy

What success looks like (6–12 months):

Strengthened cloud security controls across AWS/Azure environments, with clear improvements in risk posture

Embedded security guardrails into CI/CD pipelines through automation and Infrastructure-as-Code

Improved detection and response capability, reducing time to identify and remediate threats

Established strong working relationships with engineering and product teams, influencing secure design decisions

Delivered clear, actionable security reporting and contributed to a culture of continuous improvement

Helped uplift team awareness and capability around secure development and operations