Senior Security Engineer (Software Platform)

Neara Inc.

Job Overview

Location

Sydney, Australia

Job Type

Full-time

Full Job Description

📋 Description

• Join Neara Inc. as our pioneering Senior Security Engineer (Software & Platform), a critical role focused on embedding robust security practices directly into our innovative software development lifecycle and platform architecture.
• At Neara, we are revolutionizing the energy sector by creating sophisticated, physics-enabled digital twins of electricity grids using advanced machine learning. Our technology empowers asset owners to understand grid vulnerabilities, optimize investments, and build a more resilient global energy future by simulating extreme weather and structural stress on a massive scale.
• This is a unique opportunity to be the first dedicated, in-house security expert, shaping security as a deeply practical, engineering-led discipline rather than a mere compliance exercise.
• You will be instrumental in integrating security directly into our code, influencing how we design and operate secure systems, and making security the path of least resistance for all engineers at Neara.
• Your primary focus will be on **Engineering & Product Security**, involving hands-on code, architecture, and infrastructure security reviews. You will act as a key security reviewer for Pull Requests (PRs) and design documents, ensuring security is considered from the earliest stages of development.
• You will proactively identify, analyze, and remediate vulnerabilities across our backend services, APIs, cloud infrastructure, CI/CD pipelines, authentication mechanisms, and data flows.
• This role requires you to leverage and fine-tune a variety of security analysis tools, including static, dynamic, dependency, and runtime analysis tools, encompassing commercial, open-source, and emerging AI-assisted solutions.
• You will conduct both white-box and black-box testing methodologies, and perform targeted penetration tests to uncover potential weaknesses.
• A significant part of your responsibility will be to help design and implement defense-in-depth strategies across our systems and operational processes, creating multiple layers of security.
• You will be embedded early in the product design phase, collaborating with engineering teams to prevent security issues before they arise, shifting security left.
• Beyond technical implementation, you will drive **Security Culture & Real-World Practices**. This involves ensuring that our security practices accurately reflect the day-to-day realities of our engineering teams, not just theoretical policies.
• You will identify discrepancies between documented policies and actual team behaviors, and work to rectify the underlying systems and processes rather than just updating documentation.
• Your goal is to reduce friction in the development process, enabling engineers to implement secure practices by default, making security intuitive and integrated.
• You will serve as a visible, pragmatic, and approachable security champion across the entire company.
• You will educate and empower teams on secure development principles, threat modeling techniques, and understanding real-world attack vectors, fostering a proactive security mindset without resorting to fear-mongering.
• In terms of **Compliance (With Engineering Context)**, you will own and evolve our ISO 27001 and SOC 2 controls, always maintaining an engineering-first perspective.
• You will ensure that our security controls are technically sound, easily defensible, and directly aligned with our actual systems and operational workflows.
• You will prepare for and manage audits in a manner that adds tangible value to our security posture and operational efficiency, rather than creating unnecessary bureaucracy.
• You will collaborate closely with engineering, operations, and leadership teams to continuously enhance our overall security maturity and resilience.
• This role offers the chance to build security into the very fabric of a cutting-edge technology company, directly impacting the resilience and security of critical global infrastructure.
• You will be empowered to make significant decisions and drive impactful changes in a fast-paced, innovative environment.
• Your work will directly contribute to Neara's mission of building a more secure and resilient energy future for the world.
• This is an opportunity to define and build the security function from the ground up, establishing best practices and a strong security-conscious culture.
• You will work with a talented team of engineers who are passionate about solving complex real-world problems with technology.
• The role demands a blend of deep technical expertise, strategic thinking, and strong interpersonal skills to effectively influence and collaborate across the organization.

🎯 Requirements

• Strong software engineering background, with a preference for backend or platform engineering experience, demonstrating a solid understanding of how software is built and deployed.
• Proven experience in reviewing and reasoning about real-world production code, identifying potential security flaws and architectural weaknesses.
• Deep understanding of common web application and system vulnerabilities (e.g., authentication bypass, cryptographic misuse, injection flaws, cloud misconfigurations, insecure direct object references).
• Practical experience securing modern technology stacks, including APIs, cloud environments (AWS, Azure, GCP), CI/CD pipelines, containerization (Docker, Kubernetes), and Identity and Access Management (IAM).
• Ability to perform threat modeling on complex systems, identify potential attack vectors, and reason about attacker trade-offs and motivations.
• Comfort and proficiency in utilizing both automated security scanning tools and performing manual security analysis and testing.
• Excellent communication skills, with the ability to clearly and pragmatically explain complex security risks and recommendations to both technical engineers and non-technical stakeholders.

🏖️ Benefits

• Competitive salary and a meaningful Employee Stock Ownership Plan (ESOP), offering significant long-term financial upside.
• Fully flexible working arrangements, allowing you to balance work and life effectively, complemented by a well-stocked office in Redfern for those who prefer an in-office environment.
• Regular office events and team-building activities designed to foster a strong sense of community and collaboration.
• The core benefit is the opportunity to work on a genuinely complex, innovative, and industry-leading product that makes a tangible, positive difference in the world by enhancing the resilience of critical energy infrastructure.

Skills & Technologies

Senior

Onsite

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

Neara Inc.

Visit Website

About Neara Inc.

Neara Inc. is a technology company specializing in advanced infrastructure mapping and digital twin solutions. Leveraging AI and machine learning, Neara creates highly accurate, 3D digital representations of physical infrastructure, including power grids, telecommunications networks, and transportation systems. These digital twins enable organizations to visualize, analyze, and manage their assets with unprecedented detail. The platform facilitates improved decision-making for maintenance, upgrades, and emergency response planning. Neara's technology helps utility companies, government agencies, and other infrastructure operators enhance operational efficiency, reduce risks, and ensure the reliability and resilience of critical assets. Their focus is on providing actionable insights from complex data.

View Company Profile