Senior DevSecOps Engineer
Melbourne, Australia
We have multiple roles opening. To start with, these are 1‑year FTC positions with the possibility of becoming permanent in the future. We’re flexible on location, though we prefer candidates based in Melbourne, Sydney, or Brisbane, as we have physical offices in these cities and operate in a hybrid working environment.
These roles will sit across different areas of the business, so they’ll be spread out depending on the program of work.
Opportunity Snapshot
The DevSecOps Engineer is responsible for designing, implementing, and operating Bupa’s standard DevSecOps toolchain and ‘golden path to production’, establishing consistent engineering practices, governance, and an improved (AI-enabled) developer experience.
The role supports migration, enablement, and organisational change to scale adoption across technology. Key focus areas include standardising CI/CD pipelines and branching/release strategy, shifting security earlier into the SDLC, automating toolchain handoffs, and removing release lifecycle constraints to reduce production risk and improve delivery speed.
Deliver golden reference pipelines to define the standard secure path to production, using GitHub/GitHub Actions, SonarQube, Checkmarx & Wiz, Terraform, Jira, and JFrog Artifactory.
What you’ll need to make it possible
- Extensive DevSecOps Experience:
- 5+ years of practical experience in DevOps/DevSecOps roles, demonstrating a deep understanding of principles and implementation.
- CI/CD and DevSecOps engineering experience, including building and operating pipelines with GitHub and GitHub Actions (or equivalent CI/CD tooling)
- Experience with cloud platforms (Azure preferred) and using role-based access control (RBAC) and policy controls to enforce secure engineering guardrails
- Experience in Infrastructure as Code (IaC) for cloud resource provisioning, preferably using Terraform and automated policy/validation checks
- Hands-on experience with containerized Docker application lifecycle with Microsoft platform and tools (Docker, Container registries, Kubernetes and Helm).
- Strong DevSecOps and software supply chain security capability, including automated SAST, SCA, secrets scanning, and container vulnerability scanning (e.g., Checkmarx and Wiz), across build and runtime in cloud and Kubernetes environments.
- Hands-on experience implementing quality gates and automated testing in CI/CD, including code quality tooling such as SonarQube (or equivalent).
- Knowledge of .Net Frameworks, dotnet cli and configuration management in .Net core.
- Understanding of Microservice Architecture, REST API’s and using Azure functions for Event-Driven Architecture
- Experience with monitoring and alerting tools in Microsoft platform (Azure Monitor, Log Analytics, Application insights etc)
- Scripting Skills (PowerShell, Shell and Python)
- Solid commercial understanding and awareness
- Demonstrated success in managing internal stakeholders.
Why you’ll love it?
We support our people to be the healthiest and happiest versions of themselves. From providing initiatives that develop careers to looking after our people’s health, wellbeing and futures. Enjoy the flexibility of hybrid working, with a mix of time in the office and at home, while having plenty of opportunities to learn, grow, and take your experience to the next level.
If this sounds exciting, we’d love to hear from you. Let’s shape the future of healthcare, together.
At Bupa your wellbeing, identity, and personal story are respected and valued. We are continuing to build teams that reflect the diversity of the communities we serve. Bupa is committed to providing equal opportunities and fostering a workplace and environment that is free of discrimination, bullying and harassment.
We actively encourage applicants from all backgrounds and experiences, including Aboriginal and Torres Strait Islander peoples, veterans, people with disabilities, and LGBTQIA+ applicants. We are dedicated to removing barriers to participation. If you need any reasonable adjustments during the recruitment process, or if you’d like to discuss how this role can be flexible for you, please let us know so we can support your participation on an equitable basis.
Job Alerts
Don’t see a role that’s right for you? You can sign up for our job alerts and we’ll make sure to let you know when the right one comes up.
Join Our Talent Community
Looking to shape a brighter future for everyone? Sign up to our talent community and be the first to learn about new roles.
Join Now