Location: Sydney

Role: IAM & Serverless Security Analyst

Experience: 7+ Years

Eligibility: Candidates must have the right to work in Australia (Citizen, PR, or valid visa holders)

Role Overview

We’re looking for a seasoned IAM & Serverless Security Analyst to lead security strategy, architecture, and governance for cloud-native and serverless environments. This role blends hands-on technical expertise with consultative leadership, enabling secure-by-design serverless applications.

Key Responsibilities

• Design and enforce least-privilege IAM using Microsoft Entra ID (Azure AD), PIM, MFA, and Conditional Access

• Secure serverless workloads (AWS Lambda / Azure Functions) through architecture reviews, threat modeling, and testing

• Implement monitoring, logging, and alerting for identity and serverless threats

• Conduct access reviews, security assessments, and vulnerability testing

• Support compliance with ISO 27001, NIST, SOC 2 and audit requirements

• Develop security standards, documentation, dashboards, and reports

• Coach and enable development teams on secure serverless practices

Qualifications & Experience

• 8+ years in Cloud / Application Security with 3+ years in serverless security

• Strong expertise in Microsoft Entra ID (Azure AD) – CA, MFA, PIM, RBAC

• Hands-on experience with AWS Lambda or Azure Functions, IAM, API services

• Proficiency in PowerShell, IAM automation, and DevSecOps practices

• Experience with security monitoring tools, SIEM, and cloud-native logging

• Familiarity with compliance frameworks and security best practices

• Azure/AWS security certifications preferred

Please drop your CV to [email protected]