Application Security Engineer (AU) at DroneShield Group Pty Ltd – Sydney, New South Wales

Work with cutting edge AI technology, making the world a safer and more secure place. DroneShield (ASX:DRO) offers an opportunity to solve some of world’s most challenging technical problems in the rapidly growing counter-drone sector.

Our customers operate in some of the most challenging and high-stakes environments in the world, including military organisations, government agencies, airports, critical infrastructure operators, and law enforcement. Protecting airspace in these settings requires technology that performs under pressure and teams that understand what’s at stake. At DroneShield, employees work at the leading edge of counter-drone innovation, helping to address real-world security challenges as drone threats continue to evolve globally.

With one of the largest listed defence company market capitalisations in Australia, now part of the ASX200 index, DroneShield is experiencing a period of hypergrowth. Revenue has surged from A$57 million in 2024 to over A$190 million in 2025, representing growth of more than 400% year-on-year, with record profitability and cashflow. The total addressable global market for counter-drone is assessed at approximately $100 billion, and is currently at the nascent stage with much of the growth still to come, with DroneShield well positioned as a global market leader, and the only public listed pure-play business in this sector.

The company has grown from 11 employees in 2017 to over 450 staff globally today, and is on track to reach around 550 by the end of 2026. This expansion includes investment of over A$50 million annually in R&D, a global pipeline exceeding A$2.5 billion, and continuous scaling of production capacity to meet accelerating demand.

The role is based at DroneShield’s central Sydney headquarters. Overseas on-the-ground presence includes Virginia (USA), Netherlands, Denmark, Mexico and Dubai, as well as distributors in over 70 countries worldwide.

About the role

DroneShield is seeking an Application Security Engineer with relevant experience to join the Product Security team in Sydney, NSW.

The Product Security team is responsible for improving the security of all DroneShield products. Our product suite includes hardware, firmware, web apps, cloud and AI. As a small team, we need to focus on initiatives that scale our work: eliminating entire bug classes, automating security controls, and working in partnership with other engineering teams.

Key responsibilities include assuring the security of Production Applications and Platforms, enhance our secure SDLC, CI/CD platform and reduce toil for Engineers. The role also involves managing multiple concurrent projects.

The ideal candidate will have strong communication skills, web app & cloud security knowledge and experience with automation. They should have demonstrated experience in application security in high-stakes environments, and deep technical expertise in modern app security and application architectures.

This position offers the opportunity to contribute to the security of a platform with complex threat models. There will also be opportunities for Red Teaming and exposure to Hardware and Embedded security.

Responsibilities, Duties and Expectations

• Contribute to secure SDLC practices and help integrate security into CI/CD pipelines
• Perform application security reviews and threat modelling
• Identify and remediate vulnerabilities in web apps, APIs, and cloud environments
• Develop automation scripts and tools to improve security processes
• Collaborate with engineering teams to improve developer experience and reduce security toil
• Assist in security testing (SAST, DAST, SCA) and vulnerability management
• Support continuous improvement and knowledge sharing within the team

Qualifications, Experience and Skills

• BS degree in Computer Science, Information Technology or similar technical field of study or equivalent practical experience
• Demonstrated experience working in application security in high-stakes environments
• On-the-tools engineering experience – must be hands-on
• Minimum 3 years’ experience in related roles. Roles could include:
• • Security Engineer
  • Application Security Engineer
  • Software Engineer
• Knowledge of the following would also be essential:
• • Comfortable on the command line in a Linux first environment
  • Application Security Reviews and Threat Modelling
  • Can write software (Python, Go, etc.) and peer review code / implementation / automation scripts
  • Familiarity with RESTful and gRPC APIs
  • Modern app security and application architectures
  • Strong expertise in software engineering best practices
  • Experience finding security bugs in web apps, mobile apps and cloud
  • Working within production environments and understanding security risks in CI/CD
  • SAST, DAST, SCA
• Knowledge of the following would also be desirable:
• • Red Teaming, reverse engineering, security research
  • Cloud Security (Azure/AWS)
  • Developing and implementing automated security testing tools
  • Hardware and Embedded Security

Note for recruitment agencies: We do not accept unsolicited candidates from external recruiters unless specifically instructed.