Reapit – Who are we?

Reapit is the original, end-to-end business technology provider for estate agencies of all sizes. We’ve been helping sales and lettings agents to build relationships and grow their businesses for more than 25 years. Our technology connects property professionals in Europe, the Middle East, Australia, and New Zealand with buyers, sellers, tenants and landlords to power the relationships that change lives.

In Australia, Reapit stands as the preferred technology choice among the nation's leading estate agents and agencies. Tailored to the unique demands of the Australian property market, Reapit provides successful leaders with unparalleled tools across sales, property management, client relations, and data analytics, reinforcing their position at the pinnacle of real estate excellence.

What you’ll be doing

Reporting directly to the Head of DevOps in Australia, you’ll play a critical role in strengthening and maturing Reapit’s cloud security posture. Your work will span security engineering, deep incident response, proactive threat detection, and collaboration with global teams. You will be working closely with the CISO and Security team to align with Business Security requirements

Security Engineering & Cloud Security

• Writing rules (Policy as Code) that automatically block any infrastructure that doesn't meet company security standards

• Create scanning templates for DevOps teams checking misconfigurations in Terraform, Jenkins, CDK, etc

• Conduct ongoing security assessments, configuration reviews, and audits of AWS environments to identify vulnerabilities and recommend remediation.

• Implement and maintain cloud security controls aligned to ISO 27001, NIST and cloud security best practices.

• Develop security automation tooling, scripts, and infrastructure as code processes to streamline security operations such as CI/CD.

• Work in a self managing, proactive manner — anticipating security needs, identifying gaps, and driving improvements without close supervision.

Incident Response & Threat Detection

• Respond to SOC alerts for our outsourced SOC

• Lead and participate in global incident response activities, including investigation, containment, eradication, and recovery.

• Perform advanced log analysis, digital forensics, and threat validation using AWS native and third party tooling.

• Monitor AWS/Azure and application security alerts, responding quickly and decisively.

• Participate in an out of hours when required (Time in Lieu given), including early morning collaboration with Australia based teams and responding to major incidents.

• Document all incident activity clearly and thoroughly in tickets, knowledge bases, and post incident reports.

• Carry out threat models and review log ingestion and alerting with the SOC

• Working with Security team to build Playbooks

Security Collaboration & Enablement

• Provide expert guidance and mentorship to development, engineering and operations teams.

• Collaborate across multiple time zones, contributing proactively and reliably to global security initiatives.

• Stay ahead of emerging cloud threats, AWS security tooling, and defensive techniques, champion their adoption across the organisation.

• Produce clear, detailed, and structured documentation for tickets, processes, runbooks, and security standards.

Who we're looking for

At Reapit, we prioritise hiring individuals who share our values and possess the right attitudes and behaviours for success. Whilst some of the listed requirements may be important, don’t worry if you don’t meet all of them, we’d still like to hear from you.

• Minimum 5 years’ hands on experience in DevSecOps within an AWS focused environment.

• Strong technical proficiency across AWS services including IAM, VPC, EC2, S3, RDS, Lambda, and core networking concepts.

• Deep, practical experience in incident response, including digital forensics, log analysis, threat detection, and handling security incidents end to end.

• Experience with AWS security tooling such as Security Hub, GuardDuty, Detective, CloudTrail, CloudWatch, Inspector, and related cloud native controls.

• Practical experience with scripting (Python preferred) and Infrastructure as Code tooling such as Terraform.

• Solid understanding of ISO 27001, NIST CSF, and cloud security best practices.

Behaviours & Mindset

• Highly self managing, able to take ownership of work, prioritise effectively, and drive tasks to completion with minimal oversight.

• Proactive in identifying security gaps, recommending improvements, and staying ahead of emerging threats.

• Strong attention to detail, especially in technical execution, documentation, and ticketing.

• Excellent communication skills, able to work with both technical and non‑technical teams across multiple time zones.

• Comfortable participating in out of hours incident response when required.

• AWS Certified Security – Specialty

• Exposure to threat intelligence, cloud forensics, or advanced SOC workflows

• Experience working in a global or distributed teams

What your impact and success looks like

We expect your success and impact in the early stages of your career with us to look something like this:

Within 1 month:

• Familiarity with Company Policies and Security Infrastructure

• Familiarity with AWS Security Best Practices and the business Setup

• Integration into DevOps Workflow

Within 3 months:

• Security Incident Handling and Remediation

• Security Automation and Tooling

• Security Compliance and Auditing

• Collaboration with Development Teams

• POC of SOAR platform complete with Security team

Within 6 months:

• Continuous Improvement Initiatives

• Security Incident Management

• SOAR platform complete and global rollout initiated

We operate a Flexible Working Policy and you are free to determine where you work from, be that from home or in the Sydney or Brisbane offices, and how often but we certainly recommend a balance.

Don't tick all the boxes? Neither do we

We care about our industry and want it to become a more inclusive and diverse place to work. So, we’re driven by hiring not only by experience and relevance for the role but by sharing our values and the right attitudes and behaviours for success. We are committed to Equal Employment Opportunity through attracting and retaining a complementary team of employees and building an inclusive environment for all. We feel we have an empowering environment where everyone is supported and respected, and we want you to feel this too. We welcome new ideas, thinking and approaches, whilst listening to all our employees.

“We are a 2025 Circle Back Initiative Employer – we commit to respond to every applicant.”