About Us

At ANZ, we're shaping a world where people and communities thrive, driven by a common goal: to improve the financial wellbeing and sustainability of our millions of customers.

About the Role

The mission of Application Security Engineering squad is to keep ANZ safe by ensuring that applications are coded securely via providing secure development training, secure code review and Software Composition Analysis services.

As a Engineer in Application Security Engineering squad, you will support application security services to increase delivery speed in a secure manner. You will utilise various tools and practices to secure solutions in the most efficient ways, enhancing tech division capabilities and enabling DevSecOps across the enterprise.

• You will drive ANZ's information security efforts by providing Subject Matter Expertise and collaborate with engineering teams for:
• Delivering application security services covering security code review, software composition analysis and security development training
• Assessing tools outputs, reviewing code/configuration, and providing guidance on security vulnerabilities and remediation controls to the application development teams
• Integrating, managing, fine tuning and automating application security tooling and practices to enable DevSecOps 

Role Type: Permanent
Role Location: Bengaluru
Work Hours: Full-Time (Hybrid\Blended)

What will your day look like?

A problem solver – You are energised by tackling complex problems and use critical thinking, your network, skills, knowledge, and available data to drive better outcomes for our customers and the bank

You are the customer’s greatest fan - Demonstrate a thirst for better understanding the customer, defines the problem and develop solutions through their eyes

A collaboration champion – I work closely with my colleagues to ensure alignment and champion the sharing of learning across teams

A team player – You know we only win if we all win. You recognise and value the different perspectives and skills your colleagues bring. It is not about being a hero but jumping in and contributing to the successful delivery of the team’s mission

Continuous improvement junkie – You constructively challenge the status quo, look for better ways to do things and passionately advocate continuous improvement

Comfortable being uncomfortable – You are comfortable with uncertainty and have the ability to effectively manage yourself through ambiguity and change

Risk savvy – You build sustainable solutions that protect customers, stakeholders and the community

Committed to your own and other’s growth – You strive to stretch and grow yourself and others by identifying your own development areas, seeking feedback and providing feedback to others to help them learn and grow everyday

Commercially and Tech curious – I have a wide-angled lens. I am curious about what’s happening in the external market and in emerging trends and innovations (technological and otherwise) and how we use this information to better inform our decisions and actions.

What will you bring?

• Must have 8+Years relevant experience in security domain.
• Experience in performing end-to-end security code scanning/review and/or software composition analysis using automated and manual techniques, leveraging enterprise SAST and SCA toolsets
• Provide guidance to application teams (engineers/developers) on security vulnerabilities and remediation controls in various programming languages/frameworks.
• Experience with various application security tooling and its usage in an enterprise
• Knowledge of APIs and integration patterns offered by the application security toolsets (including but not limited to SAST, SCA) and its usage to facilitate DevSecOps
• Do you have hands-on experience with application security concepts (threats, vulnerabilities, and fixes) and proficiency in multiple programming 
• Experience in a consulting role with a background in security and/or application development
• Knowledge of Risk Management Principles
• Ability to drive optimal security outcomes and effectively navigate challenging situations.

Detailed Description

Preferred skills:

• Knowledge with various aspect of DevSecOps including but not limited to CI/CD pipeline, Infrastructure as Code, testing automation, DevSecOps orchestration & configuration
• Experience of working with enterprise grade SaaS, PaaS and IaaS (eg: MS Azure, AWS, GCP, Salesforce, etc.)security
• Knowledge of Regulatory Security Requirements
• Agile/Scaled Agile delivery experience; managing work under an Epic with defined stories
• Exceptional interpersonal skills, including the ability to inspire, mentor, coach and develop others.
• Relevant cyber security certifications (CISSP, CEH, etc)

You’re not expected to have 100% of these skills. At ANZ a growth mindset is at the heart of our culture, so if you have most of these things in your toolbox, we’d love to hear from you

So why join us?

ANZ is a place where big things happen as we work together to provide banking and financial services across more than 30 markets. With more than 7,500 people, our Bengaluru team is the bank's largest technology, data and operations centre outside Australia. In operation for over 33 years, the centre is critical in delivering the bank's strategy and making an impact for our millions of customers around the world. Our Bengaluru team not only drives the transformation initiatives of the bank, it also drives a culture that makes ANZ a great place to be. We're proud that people feel they can be themselves at ANZ and 90 percent of our people feel they belong. 

We know our people need different things to be great in their role, so we offer a range of flexible working options, including hybrid work (where the role allows it). Our people also enjoy a range of benefits including access to health and wellbeing services.

We want to continue building a diverse workplace and welcome applications from everyone. Please talk to us about any adjustments you may require to our recruitment process or the role itself. If you are a candidate with a disability or access requirements, let us know how we can provide you with additional support.

To find out more about working at ANZ visit https://www.anz.com/careers/. You can apply for this role by visiting ANZ Careers and searching for reference number 118917.

Job Posting End Date

06/07/2026, 11.59pm, (Melbourne Australia)