Senior Platform Engineer

Location: Richmond

Time Type: Full time

Job Description

Senior Cloud Platform Engineer

MECCA has a large and growing focus in the digital space, and we are looking for a Senior Platform Engineer to join our Cloud & Platform team. Reporting into the Cloud & Platform Technical Director, you will play a pivotal hands-on role in executing MECCA's Platform Engineering strategy — a strategy centred on building a world-class internal developer platform that accelerates engineering velocity, reduces cognitive load on product teams, and embeds security and operational excellence across our entire technology estate.

We are currently working on an ambitious Platform Engineering roadmap, which will provide a genuinely greenfield opportunity. The foundations have mostly been laid — infrastructure templates, standardised CI/CD pipelines are still evolving, and observability tooling are in place — and now we are focused on delivering self-service infrastructure provisioning, enhancing deployment capabilities, and deepening security integration across the delivery lifecycle. The successful candidate will have the opportunity to help shape and build the Platform Engineering culture and technical direction from the ground up, leaving a lasting impact on how engineering is practised at MECCA.

We treat our platform as a product. That means a developer-first mindset, a customer empathy culture, and a relentless focus on delivering the highest value in the shortest amount of time — safely and at scale.

The Role You Could Play:   

• Architect the "Golden Path": Design and evolve a self-service platform that enables developers to provision secure, compliant AWS infrastructure independently

• Evolution of IaC: Own the lifecycle of our Terraform/OpenTofu ecosystem, moving beyond simple scripts to high-abstraction, reusable modules that standardise our multi-environment state

• CI/CD Orchestration: Build and maintain the "Engine Room" of our delivery—standardising pipeline templates (.NET, React) with built-in deployment gates, canaries, and automated rollbacks

• DevSecOps Governance: Bake security into the platform. You will implement Policy-as-Code (OPA/Sentinel) and integrate AppSec and SAST/DAST/Secret management directly into the developer workflow

• Observability Strategy: Turn "noise" into "signal." You’ll tune our Datadog stacks to focus on SLOs and SLIs, reducing alert fatigue while improving system transparency

• Technical Consultancy: Act as an internal "Product Manager" for our developers—gathering feedback from DigiTech squads and mentoring mid-level engineers to foster a security-first culture

What You Will Bring:

• Cloud Infrastructure & Orchestration

  • Proven experience designing and implementing secure, scalable cloud solutions on AWS — with strong knowledge of architectural patterns including serverless, microservices, and hybrid environments

  • Hands-on experience managing and scaling containerised environments including container registries, cluster/image lifecycle management, and container runtime troubleshooting

  • Solid understanding of cloud networking (VPC, Route 53, Transit Gateway, Firewalls) and multi-tiered architectures

• Proven experience building and scaling Internal Developer Platforms (IDPs)

• Infrastructure as Code (IaC) & Automation

  • Deep expertise in Infrastructure as Code — developing, maintaining, documenting and optimising complex, reusable modules in Terraform or OpenTofu, including robust state management and multi-environment configurations

  • Proficiency in Python, Go, or Bash to build custom tooling, automate toil, and integrate disparate systems

• CI/CD & Delivery Engineering

  • Experience designing and maintaining robust, auditable CI/CD pipelines (e.g., GitHub Actions, Azure DevOps, or GitLab CI)

  • Implementation of advanced deployment patterns like Canary, Blue/Green, including deployment gates and automated rollback mechanisms

• DevSecOps & Governance

  • Experience implementing Policy-as-Code using tools such as OPA or Sentinel to enforce security and compliance standards automatically across the infrastructure layer

  • Proven track record of embedding SAST/DAST, container scanning, vulnerability scanning and secrets management (HashiCorp Vault or AWS Secrets Manager) directly into developer workflows

  • Expertise in designing complex IAM and RBAC policies following the principle of least privilege

  • Familiarity with security and compliance frameworks such as ISO 27001 or SOC 2, and experience with cloud configuration compliance tooling (e.g., AWS Config, AWS Security Hub)

• Observability & Reliability

  • Experience configuring and tuning observability tooling (e.g., Datadog, New Relic, Splunk) and alerting platforms (OpsGenie, PagerDuty), with a focus on signal quality over volume

  • Ability to define and monitor SLIs, SLOs, and Error Budgets to drive platform stability and reduce alert fatigue

Qualifications:

A bachelor’s degree in computer science, Software Engineering, or a related discipline is preferred but not essential — we recognise that in platform and DevSecOps engineering, demonstrated experience and hands-on capability are equally valued.

• 5+ years of experience in DevOps, SRE, or Platform Engineering roles

• Strong architectural understanding of AWS

  • The following certifications are highly regarded:

  • AWS Certified DevOps Engineer – Professional

  • AWS Certified Solutions Architect – Associate or Professional

Your Life At MECCA 

Whilst we are singularly focused on our #CustomerFirst mantra, we know that wouldn’t be possible without an incredible team that is guided by our MECCA values and motivated each and every day to be solutions focused, innovative, collaborative and adaptable, and have a bit of fun along the way!

Some of our other team member benefits include: 

• Professional development programs and first-class digitised learning offering 

• Health and well-being initiatives

• Reward and recognition programs

• Access to bonus and incentive programs 

• Access to quarterly product allowance 

• Generous discount to spoil yourselves and your immediate family, as well as a generous product allowance, subject to company policy. 

There are also so many other ways in which you’ll be made to feel part of the MECCA story as we love to celebrate, surprise and delight our team along the way. 

To learn more about life at MECCA Brands, follow us on LinkedIn at MECCA Brands or @lifeatmecca and for all current opportunities, visit http://www.mecca.com.au/careerswww.mecca.com.au/careers