Squad Lead - Security Engineering

You’re only human.   

It’s a strange thing to say, because us humans are capable of incredible things. And at Medibank, we know our greatest potential lies in the people who work with us.   

We strive to make real, fundamental change, driven by a simple purpose: to create the best health and wellbeing for all of Australia.  

About the Role

As Squad Lead – Security Engineering, you will be a key member of the CISO leadership team, leading a high-performing group of developers, security engineers, and specialists. You will drive the design and delivery of robust, scalable, and compliant security solutions that support Medibank’s strategic objectives and protect sensitive health data.

Your responsibilities will include

• Leading the development and implementation of secure infrastructure as code, application security, cloud security, and automated security tooling.
• Embedding security-by-design principles across the technology lifecycle.
• Ensuring seamless integration of security controls into development and operational environments.
• Driving compliance with regulatory frameworks such as APRA CPS 234, ISO 27001, and the Australian Privacy Principles (APPs).
• Proactively identifying and mitigating security risks across the enterprise.

About you

You are a seasoned security engineering leader with:

• 10+ years of experience in a similar or related role, demonstrating deep expertise across security engineering domains such as cloud security, infrastructure hardening, secure software development, and security tooling.
• Proven leadership in building and managing security engineering functions, including designing and implementing scalable security controls across hybrid and cloud-native environments.
• Extensive experience embedding security into CI/CD pipelines, infrastructure-as-code (IaC), and platform engineering practices.
• Strong stakeholder engagement skills with the ability to translate complex security engineering concepts into actionable outcomes for both technical and non-technical audiences.
• Advanced problem-solving capabilities with a strategic and analytical mindset.
• Excellent verbal and written communication skills, including experience presenting to executive stakeholders.
• Comprehensive understanding and practical application of security and compliance frameworks such as APRA CPS 234, ISO 27001, ASD Essential Eight, NIST 800-53, and secure-by-design principles.
• Familiarity with secure SDLC, threat modelling, and frameworks like MITRE ATT&CK in the context of vulnerability management and secure engineering.
• Relevant certifications such as CISSP, CISM, OSCP, AWS/Azure Security Specialty, or engineering-focused credentials (e.g., HashiCorp Certified: Terraform, Certified Kubernetes Security Specialist) that demonstrate depth in security engineering strategy and delivery.

Imagine working with us 

We understand that work means different things to everyone...  We know happy, healthy people make great teams, and great teams put more heart into each customer and patient interaction. And that’s why we’re reinventing work.    

Imagine a workplace where work didn't feel like work. A workplace where you could shape when and where you work to have more impact. Where flexible working isn’t a buzzword, it’s a reality.  

Imagine a workplace that helps you and your family thrive.  Where connection, personal development and health and wellbeing are front of mind. To learn more about our benefits go to https://careers.medibank.com.au/culture/rewards-benefits/

For you, work should help you Live Better. It should bring you fulfillment and joy. And with Medibank, it could. 

Inclusion and Accessibility  

We believe in everyone's potential and strive to make Medibank inclusive for all because different perspectives make us better. We encourage applications from everyone, including Aboriginal and Torres Strait Islander candidates, those with disabilities, and LGBTQIA+ community including transgender and gender diverse applicants. 

For any adjustments or alternative formats during the recruitment process, please contact us at careers@medibank.com.au. To learn about our commitments and employee experiences, go to https://careers.medibank.com.au/culture/diversity-inclusion/