Company Description

Whether you’re working from home or on your way to the office, chances are you’re probably reading this because you’re seeking a new adventure, or you’re up for a new challenge. GROW Inc might just be that for you!

So, who is GROW Inc?

Founded in 2016, we’re the Australian FinTech success story solving major problems in the Superannuation and Managed Funds industries. The administration platforms (the software that tracks everything to do with your super and investments) that you see today are built on things you or your parents would recognise from the glory days of 90’s computing - we're revamping the way this is done through modern, powerful technology to create a better experience for you and every other Australian.

How are we doing it?

We’re solving this by disrupting the wealth management industry with DLTA, our platform built on Distributed Ledger Technology. We’re making super and investments more timely and making the information more accessible whilst enabling wealth management companies to offer more cost effective solutions: all with the goal of improving the financial wellbeing of all Australians.

Now with over 1 million Australians using our technology every day, we're ramping up as we build new products and enter new industries, and we're looking for talented, driven people (just like yourself!) to join us.

We’re rebels with a cause. We’re authentic, diverse, and we embrace our differences as we continue to put a dent in the universe. We know diversity of thought helps us to build better solutions for our customers which is why we encourage the entire GROW team to bring their whole selves to work each and every day.

We are looking for a Senior Security Engineer with deep experience in Cloud and Application Security, ideally with strong AWS expertise, to help secure and enable our technology environment.

This is a hands‑on, senior individual contributor role suited to someone who operates with a risk‑oriented mindset and is comfortable working autonomously. You will partner closely with engineering teams and key business stakeholders to embed secure practices into the way systems are designed, built, and operated.

The role combines strong technical depth with the ability to influence without authority, communicate clearly, and align security outcomes to business priorities.

What You’ll Be Doing:

Design, implement, and maintain secure cloud architectures, with a strong focus on AWS environments
Lead and contribute to the implementation and management of cloud‑based Web Application Firewalls (WAFs)
Secure Kubernetes and containerised workloads, including configuration, access control, and runtime security
Partner with engineering teams to embed secure‑by‑design and secure‑by‑default practices into development workflows
Design and improve centralised logging and detection capabilities, integrating logs from SaaS, self‑hosted, and cloud‑based platforms
Work with SIEM and detection technologies such as Splunk, Elastic, Datadog, CrowdStrike NG‑SIEM, or equivalent
Apply a risk‑based approach to identifying security issues, prioritising work, and proposing pragmatic solutions
Build strong relationships with stakeholders across Engineering, Legal, People & Culture, and Enterprise Risk to influence secure behaviours
Confidently navigate ambiguity, escalate risks when required, and drive outcomes without relying on formal authority
Document as you go, including architectural diagrams, technical designs, and evidence to support audits and compliance activities
Work in alignment with agreed Information Security policies, standards, and strategy, while constructively challenging and improving them where appropriate

What We’re Looking For:

Essential Experience & Skills:

Significant experience in Cloud and Application Security
Strong hands‑on experience with AWS
Experience implementing and operating cloud‑based WAF solutions
Strong working knowledge of Kubernetes and container security
Experience designing or integrating centralised logging and SIEM solutions
Ability to work autonomously with a clear, risk‑based approach
Strong written communication and documentation skills

Desirable Experience:

Exposure to DLP, MDM, EDR, and ZTNA technologies
Experience supporting or participating in audits, GRC activities, or penetration testing
Experience delivering security training or awareness sessions to technical or non‑technical audiences
Experience mentoring or supporting junior engineers
Relevant security certifications, such as (but not limited to):
- AWS Certified Security – Specialty
- CISSP, CISM, or CISA
- CCSP or CCSK
- Kubernetes or cloud security certifications

Please note this role is an initial 6 month fixed-term contract.

Why you’ll love working at GROW

Growth Opportunities - Last year over 20% of our team stepped up through promotion!
ME Days - Take an additional 4 days of leave off per year to support your wellbeing and recharge the batteries
Inclusive Holidays – Flexibility to swap public holidays to recognise what matters most to you.
Employee Share Option Program - Our success is your success!
10 weeks paid Parental Leave: Irrespective of parenting role, as well as Superannuation contributions for new parents while on unpaid parental leave for a period of up to 12 months.
Learning & Development Budget - Up to $500 per year to use on your own development!
A True Hybrid Work Arrangement - Our team are located around Australia, as well as The Philippines and Hong Kong. While we have awesome office facilities in Sydney & Melbourne CBD's, we don't mandate office attendance.

Looking for a job can be stressful and we don’t want you agonising over the wording of your cover letter, so don’t include one. Just make sure your CV is well-written and detailed enough so we can get a better idea of the type of person you are. Even if you don’t meet every single requirement, but you feel inspired to join our mission, we encourage you to send in your application. You never know, you could be the perfect person to join our team!