We Are Fujitsu We use technology to make happier lives. We are a global leader in technology and business solutions that transform organisations and the world around us. We have a long heritage of bringing innovation and expertise, continuously working to contribute to the growth of society and our customers. About the role -Short term contract (possible extension) -Canberra based -Minimum NV2 clearance We are looking for a talented and enthusiastic individual with excellent technical and client-facing skills, to act an AWS security engineer, who can design, deploy 3rd party security applications as code, integrate with native AWS tools and maintain and configure those tools. 3rd party integration will include tools such as Splunk, JIRA ITSM, Cribl Stream. The individual will need to be able to maintain and configure GuardDuty, Cloud Watch, Cloud Trail, VPC, AWS Config, Security Hub, Detective, Security Lake, Inspector and Audit Manager as a minimum. They will also be responsible for working with wider engineering and development teams to design and deploy security monitoring solutions in AWS and integrating across multi-cloud and on-premise networks. The role will range from designing and deploying new solutions, assessing existing deployments to make improvements and onboarding new data sources. This role is situated within our National Security & Government Business, based in Canberra, with substantial time on client site. The role will require a government security clearance at NV2 minimum, but candidates will be expected to undergo PV. Responsibilities The role is an AWS developer who can deploy infrastructure and applications as code, configure them and integrate with native AWS security tools. Design and deploy AWS security services, apply security controls and check compliance against a range of security standards. Develop, test and deploy security tools as code onto AWS via AWS pipelines on EC2 instances and integrate applications with: identity management solution. Experience with security applications such as Splunk, JIRA ITSM, and CTI tools. Design, implement and manage log collection and onboarding activities onto AWS for SOC security tools s(SIEM) from cloud and on-premise environments Oversee deployment / implementation activities ensuring that entry criteria are met, all planned activities are completed and that rollback plans are initiated where required. Identify use cases, plan development, deployment, testing and release into production. Liaise with product and platform teams to ensure that AWS security tools are configured managed, maintained and integrated with SOC security tools. Review and approve all required documentation as part of a release or change including design, deployment, configuration and administration guides. Integrate solutions with vulnerability, asset and configuration management, and other tools to enrich efficacy of the solution. Requirements Technical Strong knowledge and experience in AWS configuration including EC2, S3, ELB, Kinesis, EKB, Docker and Kubernetes. Strong knowledge and experience in AWS deployment and deployed as code via pipelines for infrastructure and security applications. Use and best practices around AWS core tooling including Config, Investigator, IDAM, etc Strong relationship with regional AWS staff helpful Experience in Azure helpful Strong knowledge of how AWS security functions work as security controls as well as detection tools to protect large cloud estates; Produce content and playbooks on AWS and Splunk to detect security breaches and recognise the importance of threat led Use Cases. Knowledge of SIEM/SOAR tools (Splunk and Sentinel at a minimum) and other appropriate tooling e.g. SOAR, Threat Intelligence, traffic analysis tools, etc. to identify signs of an intrusion, and advise where new/improved tooling could enhance the SOC operation Deep knowledge and experience of operational ICT service delivery management. Working with a range of security tooling/technology Strong understanding of security architecture, in particular networking Detailed understanding of threat intelligence and threat actors, TTPs and operationalising threat intelligence. Understand TCP/IP component layers to identify normal and abnormal traffic Experience of Splunk (with ES) &/or Sentinel Experience developing SIEM/SOAR content desirable Non-technical Client-side consulting, including stakeholder engagement and the ability to communicate insights and concepts to others (including briefing skills and report writing) Coaching mindset help and mentor team Security process development Able to understand and adapt to different cultures and hierarchical structures. Self-starter and capable of independent working Team player and adept at working in multi-disciplinary and diverse teams Interpersonal Ability to build and maintain relationships with the various stakeholders Ability to talk competently and maintain high standards of behaviour with the client Ability to work in a multi-cultural environment. Ability to maintain confidentiality and deal with matters of national security. Ability to maintain high standards and provide challenging feedback even when it will be perceived negatively. It is imperative that the individual can complete their tasks with minimal direction Why Fujitsu? We are an organization with a strong set of values and a history of respecting fairness and equality, whilst promoting diversity, equity, and inclusion. We constantly push ourselves to do better and strive to bring together a diverse mix of perspectives and talents in an inclusive environment, where we encourage our people to bring their full selves to work. We call this Be Completely You. We put people first. We believe in the power of diversity to drive innovation and our AWEI (Australian Workplace Equality Index) Gold Employer status, and Rainbow Tick certification for LGBTI inclusion show that we value an inclusive culture. We offer tailored career paths across our global organization to support your professional and personal growth. Our customers trust us. We have an excellent reputation across the region and globally. Best in-class reward and recognition programs flexible work, volunteering leave, and more. We live our values of aspiration, trust, and empathy, all day, every day. Commitment to Diversity, Equity and Inclusion As an inclusive employer, Fujitsu aims to recruit a diverse range of talents to help us achieve our purpose. In line with our diversity, equity, and inclusion strategy, we highly welcome applications from women and gender-diverse people; Aboriginal and Torres Strait Islander people ; Māori and Pacific people; LGBTI people; people with a disability; culturally and linguistically diverse people; veterans, Australian Defence Force (ADF) and emergency responders . Transgender and gender-diverse applicants can request a copy of our Frequently Asked Questions to assist with the recruitment journey. If you don't tick every box in this job description, please don't rule yourself out. Research suggests that underrepresented groups tend to only apply if they meet every requirement. We focus on hiring people who value inclusion, collaboration, adaptability, courage, and integrity, rather than ticking boxes so if this resonates with you, then please apply. For more information, please email [email protected]. Search Firm Representatives PLEASE READ: Fujitsu does not accept unsolicited assistance from search firms for employment opportunities. All CVs or resumes submitted by search firms to any employee at our company without a valid written agreement in place for this position will be considered the sole property of our company. No fee will be paid if a candidate is hired by Fujitsu due to an agency referral where no existing agreement is in place with the Fujitsu Talent Acquisition Team. Where agency agreements are in place, introductions must be through engagement by the Fujitsu Talent Acquisition Team. For Security Cleared Roles PLEASE NOTE: Due to the inherent requirements of the role, candidates must be Australian Citizens and hold an Australian Federal Government Security Clearance. The role will or will likely involve access to controlled technology and must satisfy additional restrictions and requirements as a consequence of the International Traffic in Arms Regulations and the Export Administration Regulations. As a consequence of these restrictions and requirements, applicants may be adversely impacted if they are not Australian citizens, are dual nationals, hold citizenship from proscribed countries, or are not of Australian national origin. Please refer to Discrimination (Fujitsu Australia Limited) Exemption 2017 (No 1) Notifiable instrument NI2020-672 (ACT).