Cybersecurity Engineer

This is a fully remote position, open to applicants in Australia.

📋 Description

• Management and compliance of ISMS. Oversee and uphold the Information Security Management System, ensuring continuous adherence to ISO 27001, GDPR, HIPAA, and other relevant frameworks.

• Cybersecurity evaluations and risk mitigation. Perform cybersecurity evaluations and audits; prioritize and drive the remediation of identified risks in collaboration with engineering teams.

• Policy creation and documentation. Draft and sustain cybersecurity policies, procedures, and controls documentation to meet Cybersecurity and Governance requirements.

• Technical security operations support. Assist cybersecurity operations and IT with technical security tools, firewalls, networking, endpoint protection, and SIEM.

• Security questionnaires and vetting of third parties. Respond to bids, tenders, and conduct security vetting for third parties.

• Fostering a security culture and awareness. Promote a security-first culture throughout the organization: develop awareness programs, conduct training, and integrate security-by-design thinking into team workflows.

• Data security and governance initiatives. Aid in data security and governance efforts across the organization.

• Clearly AI-forward. Actively employs AI in their workflows and can demonstrate specific automations they have created or commissioned to streamline IT and operations.

⛳️ Requirements

• Relevant degree in Engineering, Science, or Information Systems, or over 5 years of proven experience managing security programs or workstreams in Information Security, Network Engineering, or System Administration.

• Established technical expertise in at least one of the following areas: SOC/security operations, networking, system administration, or software development, with the capability to provide credible security consulting to engineering teams.

• Experience in managing or significantly contributing to an ISMS aligned with ISO 27001, including support for audits and control evidence.

• Familiarity with GRC tasks: risk assessments, control frameworks, policy creation, and monitoring compliance.

• Possession of at least one security certification: CISA, CISM, CISSP, SANS, BSI, or an equivalent certification.

• Excellent written and verbal communication skills; capable of conveying technical risks to stakeholders at all levels.

🏝️ Benefits

• Flex for Life. Enjoy the freedom to work when and where you excel—with options for remote work, flexible hours, and the autonomy to make a meaningful impact.

• Support for Every Family Journey. From fertility to parenthood, loss, and even grandparenthood—we offer inclusive and thoughtful policies to assist families at every stage.

• Scale Your Potential. Access yearly learning and development budgets, mentoring, hackathons, and secondments—all backed by a transparent growth framework to advance your career.

• Collaboration Across Continents. Engage with brilliant minds from around the globe in a culture founded on trust, autonomy, and true teamwork.

• Innovate for Global Good. Join us in pioneering world-first AI technology that transforms patient outcomes and contributes to building a healthier, fairer world.

• Well-Funded & Global. Supported by top-tier investors including Aware Super, Blackbird Ventures, Skip Capital, and Horizons Ventures, we’ve raised over US$240M to amplify our global impact.