• Responsible for coordinating CHN’s frameworks, programs, and approach for policies, standards, risk assessments, monitoring, and certifications related to technology. • Support information security agenda focused on risk management, disaster recovery, and business continuity. • Develop and review policies, procedures, standards, and other documents supporting information security. • Conduct regular network and application vulnerability scans and manage remediation of vulnerabilities. • Administer security awareness training to all CHN employees and contractors. • Participate in third-party risk management activities and uphold organizational values aiming for improved efficiency and equity.

• Implement WIZ/Prisma to secure cloud-native applications across containers, serverless environments, and VMs • Integrate security scans into CI/CD pipelines to enable DevSecOps best practices • Manage vulnerability detection, compliance checks, and runtime protection for Kubernetes and cloud workloads • Collaborate with DevOps and cloud teams to shift security left, embedding security early in the development lifecycle • Develop and enforce policies for secure application deployment in cloud-native environments • Design and maintain automated security workflows using WIZ/Prisma across multi-cloud environments (Azure, AWS) • Enable real-time threat detection and incident response for containerized workloads and cloud services • Define and implement best practices for vulnerability management, image scanning, and compliance reporting • Collaborate with developers to create secure-by-design container images and Infrastructure as Code (IaC) templates • Monitor and optimize WIZ/Prisma policies to adapt to evolving cloud-native application architectures • Drive security automation initiatives to minimize manual intervention and increase Cloud environment maturity • Identify and address vulnerabilities in cloud configurations, ensuring compliance with industry standards and monitoring cloud infrastructure for security gaps • Automate deployments and integrate security tools using Python and Terraform

About Airwallex Airwallex is the only unified payments and financial platform for global businesses. Powered by our unique combination of proprietary infrastructure and software, we empower over 200,000 businesses worldwide - including Brex, Rippling, Navan, Qantas, SHEIN and many more - with fully integrated solutions to manage everything from business accounts, payments, spend management and treasury, to embedded finance at a global scale. Proudly founded in Melbourne, we have a team of over 2,000 of the brightest and most innovative people in tech across 26 offices around the globe. Valued at US$8 billion and backed by world-leading investors including T. Rowe Price, Visa, Mastercard, Robinhood Ventures, Sequoia, Salesforce Ventures, DST Global, and Lone Pine Capital, Airwallex is leading the charge in building the global payments and financial platform of the future. If you're ready to do the most ambitious work of your career, join us. Attributes We Value We hire successful builders with founder-like energy who want real impact, accelerated learning, and true ownership. You bring strong role-related expertise and sharp thinking, and you're motivated by our mission and operating principles. You move fast with good judgment, dig deep with curiosity, and make decisions from first principles, balancing speed and rigor. You're humble and collaborative; turn zero-to-one ideas into real products, and you "get stuff done" end-to-end. You use AI to work smarter and solve problems faster. Here, you'll tackle complex, high-visibility problems with exceptional teammates and grow your career as we build the future of global banking. If that sounds like you, let's build what's next. About the team Corporate IT drives many functions within Airwallex, including IT Support, IT Engineering, Corporate Networks, and Business Engineering at Airwallex. IT Engineering is the core team that drives our technology experiences from collaboration and automation, AI to hardware, applications, identity and access management. We design, build and run the systems and services our Airwallex team uses to build our product, serve our customers and run our business. We partner with every team in the business and solve some of the most difficult problems for our business, all at lightning speed. What you'll do You will be part of a team working on new product features, and solving difficult problems for our business across our internal IT systems and finance systems with the goal of dramatically improving operational efficiency. You'll work across our product and our internal teams to build features in our product, focusing on our procurement and ERP functions. This will include integrations with ERP systems, our Airwallex product, and integrations to and from the Airwallex Platform. You'll also work on new AI projects within the IT engineering incubator, where we're building systems, agents and platforms for our business and employees to build their AI projects and services on - with a laser focus on solving real problems and demonstrating success. This will appeal to you if you're excited to work on many things across multiple areas, with a lot of opportunity to build from zero. This role can be based in Singapore, Sydney or Melbourne. Who you are We're looking for people who meet the minimum qualifications for this role. The preferred qualifications are great to have, but are not mandatory. Minimum qualifications: - 5+ years experience in modern engineering practices focused on continuous integration/delivery and quality engineering - A commitment to producing high quality and well tested solutions - Strong computer science fundamentals/JVM based programming. While we do not mind what language you have most recently been using, we are using Kotlin - Systems design experience in complex integration environments - Experience in API design best practices - Familiar with HTTP, TCP / IP protocol and REST specifications - Mastery of Gradle / Maven or other build tools - Experience with AI tools and services (Copilot, Claude Code, Cursor, etc.) - Familiar with the use of common container environments (Docker, Rancher, etc.) / Kubernetes - Strong understanding of cloud infrastructure and development practices (i.e. Github, Gitlab, etc.) Preferred qualifications: - Experience in Kotlin / Scala; - Asynchronous 'reactive' programming (RxJava, Akka, Spring Reactor, Vert.x); - Kafka event streams; - GCP, Alicloud or AWS (EC2, RDS, ELB, CloudFront, etc) and Kubernetes exposure; - Operational tooling such as Splunk, New Relic, StatsD, Elk, Datadog, Prometheus; - Experience with procurement systems and development, either features or integrations (i.e. Oracle Fusion, Oracle EBS, SAP ERP, etc.) ; - Experience with low-code platform or no-code platform; - Finance or accounting knowledge would be a plus Applicant Safety Policy: Fraud and Third-Party Recruiters To protect you from recruitment scams, please be aware that Airwallex will not ask for bank details, sensitive ID numbers (i.e. passport), or any form of payment during the application or interview process. All official communication will come from an @airwallex.com email address. Please apply only through careers.airwallex.com or our official LinkedIn page. Airwallex does not accept unsolicited resumes from search firms/recruiters. Airwallex will not pay any fees to search firms/recruiters if a candidate is submitted by a search firm/recruiter unless an agreement has been entered into with respect to specific open position(s). Search firms/recruiters submitting resumes to Airwallex on an unsolicited basis shall be deemed to accept this condition, regardless of any other provision to the contrary. Equal opportunity Airwallex is proud to be an equal opportunity employer. We value diversity and anyone seeking employment at Airwallex is considered based on merit, qualifications, competence and talent. We don't regard color, religion, race, national origin, sexual orientation, ancestry, citizenship, sex, marital or family status, disability, gender, or any other legally protected status when making our hiring decisions. If you have a disability or special need that requires accommodation, please let us know. #BI-Hybrid

• Own a meaningful slice of our defensive infrastructure end-to-end. • Design, execute, and follow through on security awareness programs and phishing simulations. • Participate in Endpoint Detection & Response rollout and ongoing operations. • Revamp our network protections for Zero Trust network access and DNS security. • Manage and operate our EASM platform, including continuous monitoring, finding triage, and remediation coordination. • Coordinate with our third-party penetration testing partner for scoping, logistics, findings review, and remediation tracking. • Monitor and respond to security alerts across our stack — SIEM, EDR telemetry, and related tooling. • Own relevant SOC 2 controls and participate in vendor evaluations, new tooling assessments, and ad hoc projects.