About Pathzero

Pathzero is an award-winning climate risk management platform that serves as the single source of truth for portfolio climate data. We help institutional investors — including some of the world's largest asset owners and fund managers — ingest investment data, enrich it with private and public market climate metrics, and compose it into audit-ready reporting. Our platform integrates data from leading providers including S&P Global, MSCI, and Morningstar Sustainalytics, and connects investors with a growing network of over 550 fund managers to access look-through holdings data across private markets.

As mandatory climate disclosure requirements accelerate globally, Pathzero is solving one of the industry's most complex operational challenges: unifying fragmented climate and investment data across custodians, fund administrators, and internal systems into a single, assurance-ready platform. We're SOC 2 Type II compliant and ISO 27001 certified, trusted by leading institutions including Aware Super, HESTA, StepStone Group, and IFM Investors, and recognised as the Overall Winner of the AFR BOSS Most Innovative Companies awards. We're a growing team passionate about building the infrastructure that enables the financial sector to measure, manage, and act on climate risk.

Role Description

We are looking for a Senior Cloud DevOps & Information Security Engineer to join our team. This is a high-impact, cross-functional role spanning cloud infrastructure, platform engineering, and information security governance. You will own and evolve our AWS cloud environment while simultaneously driving the maturity of our information security programme.

This role requires someone who thrives working autonomously, brings a genuine can-do attitude, and thinks about enabling the business and its customers first. You will be the go-to person for all things infrastructure and information security - from architecting cloud solutions and optimising CI/CD pipelines, to liaising with external auditors, responding to client vendor security questionnaires, and owning the Information Security Management System (ISMS) internally. You will also play a key role in enabling the business to harness AI effectively and securely. If you live and breathe AWS and get energy from building secure, scalable platforms that help a business succeed, we want to hear from you.

Key Responsibilities

Platform — Infrastructure & Cloud

Cloud Ownership

· Maintain and improve existing cloud infrastructure to ensure high availability, performance, and cost efficiency

· Architect, design, and implement new infrastructure to support evolving business and product requirements

· Design, maintain, and improve CI/CD pipelines to enable fast, reliable, and secure software delivery

· Support engineering teams with management and improvement of cloud services, CI/CD pipelines, and deployments

· Manage cloud spend proactively and drive continuous improvement opportunities across the environment

· Develop and maintain infrastructure documentation including architecture diagrams and runbooks

Strategic Leadership

· Develop and maintain a cloud governance strategy aligned with business objectives and compliance requirements

· Develop and manage strategic vendor relationships to ensure value and service quality

· Provide specialist infrastructure architecture advice to engineering teams across the organisation

· Liaise with business stakeholders to recommend, drive, and implement infrastructure improvements that enhance performance, efficiency, security, and compliance posture

· Work with engineering leadership to help shape technology strategies and roadmaps

Information Security & Compliance

· Own and continuously improve our Information Security Management System (ISMS), ensuring it remains aligned with ISO 27001, SOC 2, and evolving business requirements

· Draft controls, policies, and other artefacts as required to support the ISMS, liaising with internal stakeholders to commit, review, and implement on an agreed-upon basis

· Maintain and continuously improve compliance with the ISO 27001 and SOC 2 frameworks, ensuring we retain these certifications/attestations and evolve our posture as the business scales

· Manage external penetration tests in line with business requirements and engage with stakeholders to remediate identified issues

· Drive the planning, preparation, and execution of internal and external audits

· Provide specialist information security governance and compliance advice across the business

· Manage third-party vendor risk through continuous assessments and recommendations

· Prepare and deliver responses to client due diligence requests and vendor security questionnaires

AI Enablement & Innovation

· Stay across the rapidly evolving AI landscape and identify opportunities to transform the way we work across engineering and the broader business

· Enable and govern the secure adoption of AI-powered tools such as Cursor, Claude, and AWS Bedrock across teams

· Ensure AI tooling and integrations align with our information security policies and compliance obligations

Our Environment

· Our services run in the AWS cloud environment, most commonly using Lambda provisioned with Terraform and the Serverless Framework

· We have RESTful API microservices created with TypeScript, Node.js, and the NestJS framework

· Our databases are PostgreSQL

· Our web applications are powered by Nuxt 4, leveraging tools like Nuxt UI, Vue Query

· We use GitHub for our code repository and deployment pipelines

· We use tools like Datadog for observability

· We leverage AI across the business — Cursor and Claude for development and productivity, and AWS Bedrock within our codebase

Who are you?

We are looking for someone who is:

· A self-starter who takes ownership and operates with a high degree of autonomy — you don’t wait to be told what to do

· Genuinely passionate about enabling the business and its customers to succeed, not just ticking technical boxes

· An AWS wizard — deeply experienced across the breadth of AWS services and confident making architectural decisions independently

· Comfortable wearing multiple hats, moving seamlessly between hands-on infrastructure work and strategic security governance

· Confident liaising with external auditors, clients, and vendors on security and compliance matters

· Driven to improve things, curious, and a natural problem solver with a can-do attitude

· Pragmatic and confident in their decision making, with the ability to balance security rigour with business velocity

· Excited to develop and grow personally, alongside the fast growth of our organisation

· Genuinely excited about AI and its potential to transform the way teams work — you stay across the latest tools and know how to bring them into an organisation safely

· Motivated to apply their strengths to mitigate the risks of climate change through technology

Your Background

· At least 5 years of hands-on experience with AWS cloud infrastructure (EC2, Lambda, RDS, S3, CloudFront, API Gateway, IAM, VPC, and more)

· Strong experience designing, building, and maintaining CI/CD pipelines in production environments

· Proven experience with infrastructure-as-code tools such as Terraform

· Demonstrable experience maintaining an ISMS and sustaining compliance with frameworks such as ISO 27001 and SOC 2 in a certified environment

· Experience managing external audits, penetration tests, and vendor security assessments

· Experience responding to client due diligence and vendor security questionnaires

· Strong understanding of networking, security best practices, and cloud architecture patterns

· Excellent verbal and written communication skills — you can translate complex technical concepts for non-technical stakeholders

Exposure to any of the following is a plus:

· Observability platforms such as Datadog or similar

· Container orchestration (ECS, EKS, or similar)

· Serverless architectures and frameworks

· Scripting with Python, Bash, or TypeScript for automation

· Experience with JIRA, Confluence, and Git-based workflows (we use GitHub)

· Compliance platforms such as Vanta or similar

· Familiarity with AI-powered development and productivity tools (e.g. Cursor, Claude, AWS Bedrock)

What can we do for you?

· Apply your strengths to address the issue of climate change

· Flexible working – we are a remote-first company with a head office in Sydney CBD

· Annual office shutdown – don’t use your annual leave for your Christmas break

· Paid parental leave for all new parents

· Attractive referral bonus scheme

· Regular virtual team events and a yearly company event in Sydney

If this sounds like you, we encourage you to apply. We look forward to hearing from you.

Ensuring a diverse and inclusive workplace where we learn from each other is core to Pathzero’s values. We are excited to welcome people of different backgrounds, experiences, abilities, and perspectives.

Only candidates with full working rights can be considered and must be based in either Australia or New Zealand.