Macquarie Group Home Page

The Exposure Identification team, in the Vulnerability Management service within the Application Security Engineering division, is responsible for surfacing the most critical vulnerabilities across Macquarie's IT ecosystem and providing a prioritised and contextualised view of vulnerability data that enables teams to focus remediation efforts where needed. 

We are seeking a Vulnerability Management DevOps and Incident Responder to strengthen our operational excellence and automation capability across the vulnerability discovery, enrichment, and incident response lifecycle.

At Macquarie, our advantage is bringing together diverse people and empowering them to shape all kinds of possibilities. We are a global financial services group operating in 31 markets and with 56 years of unbroken profitability. You’ll be part of a friendly and supportive team where everyone - no matter what role - contributes ideas and drives outcomes.

What role will you play?

Press space or enter keys to toggle section visibility

In your role as a Vulnerability Management DevOps and Incident Responder, you will play a key role in leading end-to-end vulnerability incidents, coordinating cross-functional stakeholders to triage and remediate critical detections and driving iterative playbook improvements through post-incident reviews. 

In addition to this, you will also focus on the day-to-day operation, reliability, and continuous automation of our vulnerability scanning and data ingestion stack spanning agent and network-based vulnerability scanning, container runtime scanning, SCA and SAST. You will develop and maintain workflow automations, and quality guardrails to shape how vulnerability data is ingested, enriched, contextualised, and prioritised to drive actionable insights for remediation teams. 

What you offer

Press space or enter keys to toggle section visibility

• Minimum 3 years of proven experience in vulnerability management, application security, or a relevant transferable role.  
• Strong understanding of vulnerability risk frameworks and prioritisation techniques (e.g., CVSS, EPSS, KEV, exploit intel), and experience contextualising findings with asset criticality and business impact. 
• Demonstrated hands-on experience in coordinating or leading vulnerability incident response, including triage, stakeholder communication, remediation tracking, and post-incident review.
• Operational experience with agent-based and network vulnerability scanners, as well as exposure to container security, Software Composition Analysis (SCA), and Static Application Security Testing (SAST) tools. Familiarity with CNAPP and ASM platforms is a plus.
• Proficiency in Python, with experience automating workflows using APIs, event-driven processes, and job orchestration tools.
• Strong interest in leveraging AI and automation to address business challenges.
• Excellent stakeholder engagement and communication skills, with the ability to deliver pragmatic and actionable remediation guidance.
• A continuous improvement mindset, with a willingness to challenge the status quo and streamline manual workflows.

We love hearing from anyone inspired to build a better future with us, if you're excited about the role or working at Macquarie we encourage you to apply.

What we offer

Press space or enter keys to toggle section visibility

At Macquarie, you’re empowered to shape a career that’s rewarding in all the ways that matter most to you. Macquarie employees can access a wide range of benefits which, depending on employment type, include:

• 1 wellbeing leave day per year
• Up to 5 additional service bonus leave days per year
• Up to 20 weeks’ paid parental leave for primary caregivers along with 12 days of transition leave upon return to work, and 6 weeks’ paid leave for non-primary caregivers
• 2 days of paid volunteer leave and donation matching
• Up to 12 months’ gender affirmation leave, including 6 weeks’ paid leave
• Access to Employee Assistance Program and wellbeing benefits including skin and health checks, and flu vaccinations
• Access to a wide range of salary packaging options
• Access to a wide range of learning and development opportunities, including reimbursement for professional membership or subscription
• Hybrid and flexible working arrangements, dependent on role
• Reimbursement for work from home equipment

About Technology

Press space or enter keys to toggle section visibility

Technology enables every aspect of Macquarie, for our people, our customers and our communities. We’re a global team that is passionate about accelerating the digital enterprise, connecting people and data, building platforms and applications and designing tomorrow’s technology solutions.

Our commitment to diversity, equity and inclusion

Press space or enter keys to toggle section visibility

We are committed to fostering a diverse, equitable and inclusive workplace. We encourage people from all backgrounds to apply and welcome all identities, including race, ethnicity, cultural identity, nationality, gender (including gender identity or expression), age, sexual orientation, marital or partnership status, parental, caregiving or family status, family and domestic violence status, neurodiversity, religion or belief, disability, or socio-economic background. We welcome further discussions on how you can feel included and belong at Macquarie as you progress through our recruitment process. To learn more, contact our team by clicking here.

Our aim is to provide reasonable adjustments to individuals who may need support during the recruitment process and through working arrangements. If you require additional assistance, please let us know in the application process.