Senior Cyber Security Engineer

Job Description

We've been proudly Aussie since 1837, always finding new ways to innovate in energy and essential services. Now, we're moving towards a sustainable future through electrification and investing in renewable energy-and we'd like you to join us. Whether you're on-site, in the office, or somewhere in between, you'll find opportunities to grow your career here. You'll work with a team that's passionate about powering Australian lives, in a culture that values inclusivity, respect, and learning. Help us create a cleaner energy future, and we'll back you every step of the way as you build your career.

Join the change. Electrify your future.

About the role

Join AGL's Cyber Business Enablement team as a Senior Security Engineer, where you'll play a key role in strengthening the security and resilience of our IT and OT technology environments. You will help embed security throughout the system delivery lifecycle and support the uplift of AGL's overall cyber security posture.

This is a highly collaborative, delivery-focused role where you'll work across technology teams and vendor partners to drive DevSecOps adoption, implement secure development practices, and help foster a strong security-first mindset across the organisation. You'll provide expert guidance through consistent, efficient and repeatable processes that support secure change delivery and continuous improvement.

What you'll be doing

• Implement and maintain secure SSDLC controls and embed security guardrails across CI/CD pipelines
• Partner with internal teams and vendors to secure development pipelines and uplift delivery practices
• Integrate and manage application security tooling (including SAST, DAST, SCA) to identify and remediate vulnerabilities early
• Contribute to threat modelling activities for projects and critical assets
• Provide expert security advice on secure coding, DevSecOps practices and vulnerability management
• Standardise and support security assessments and penetration testing
• Drive continuous improvement initiatives and contribute to knowledge sharing and capability uplift across the organisation

What you'll bring

• Strong experience in security engineering and secure software development within complex environments
• Proven capability in penetration testing across web, mobile, APIs and infrastructure
• Hands-on experience with CI/CD security, DevSecOps practices and application security and security testing tooling
• Deep understanding of frameworks such as OWASP SAMM, CWE, NIST SSDF and MITRE ATT&CK
• Experience with vulnerability management, including prioritisation and remediation activities
• Strong communication skills with the ability to translate complex risk into clear, actionable insights
• Technical expertise in cloud technologies (Azure), automation/scripting, and secure-by-design principles
• Experience leveraging automation and AI-driven approaches to enhance security testing, threat detection and vulnerability management

Benefits

• Flexible working: AGL offers a range of flexible working options including hybrid working and/or flexible hours.
• Staff discounts: Discounted energy, telco and solar plans: Available for employees, family and friends.
• Parental Leave: 20 weeks paid leave for the primary carer plus employer-paid superannuation on unpaid leave.
• Additional Leave: 1 week 'Recharge Leave' for eligible employees and salary sacrifice up to 6 weeks additional leave.
• Wellbeing Programs: Partnerships with Medibank and Fitness Passport and on-site health appointments (massage, skin checks etc.).
• AGL Shares: Up to $1000 as part of annual Share Reward plan and salary sacrifice up to $5000 of shares.

Benefits may change over time and vary based on role type and location.

Inclusion at AGL

At AGL, we value diversity and welcome applicants from various backgrounds, including Aboriginal and/or Torres Strait Islander peoples, individuals with disabilities, culturally diverse individuals, and members of the LGBTQ+ community. AGL is dedicated to maintaining a diverse workforce and encourages applicants to share their lived experiences.
We offer reasonable adjustments throughout the recruitment process and respect the privacy of those who choose not to disclose. To learn more visit: www.agl.com.au/careers

AGL is proud to be a WORK180 Endorsed Employer for All Women.

Our pre-employment screening process includes a Nationally Coordinated Criminal History Check and a medical assessment if necessary.

The information provided as part of your application to AGL will be managed in accordance with the AGL Privacy Policy.

AGL does not accept agency submissions unless approval has been granted by a member of the Talent Acquisition team. Candidates submitted by an agency without approval will not be considered by AGL.