Squad Lead - Cyber Threat Defence

Medibank

  • Docklands, VIC
  • Permanent
  • Full-time
  • 4 days ago
You're only human.It's a strange thing to say, because us humans are capable of incredible things. And at Medibank, we know our greatest potential lies in the people who work with us.We strive to make real, fundamental change, driven by a simple purpose: to create the best health and wellbeing for all of Australia.As Squad Lead - Cyber Threat Defence, you will head a high-performing team of security specialists and be a key member of the Security leadership team. You will be responsible for the design, delivery, and continuous improvement of scalable, intelligence-driven threat defence strategies that support Medibank's strategic and regulatory objectives.Key responsibilities include
  • Leading the development and implementation of advanced threat detection technologies, incident response protocols, and security automation.
  • Overseeing threat intelligence, vulnerability management, behavioural analytics, malware defence, and SOC operations.
  • Ensuring rapid and effective response to cyber incidents, aligned with frameworks such as ACSC Essential Eight, ISO 27001, APRA CPS 234, and the Australian Privacy Principles (APPs).
  • Continuously tuning detection use cases and integrating cyber defence into broader enterprise risk management.
  • Acting as the frontline guardian-detecting, analysing, and neutralising threats before they impact our members, data, or systems.
About YouYou are a proven cyber defence leader with a strong track record in complex, regulated environments-ideally within the health or insurance sectors. You bring:
  • 10+ years of experience in cyber security, with a strong focus on cyber threat detection, incident response, and threat intelligence.
  • Demonstrated leadership in building and managing advanced cyber defence functions including SOC operations, threat hunting, red teaming, and detection engineering.
  • Extensive hands-on experience with key threat defence technologies such as SIEM (e.g., Splunk, Microsoft Sentinel), SOAR platforms, EDR/XDR (e.g., CrowdStrike, Defender for Endpoint), and threat intelligence platforms.
  • Proven expertise in security operations within cloud environments (AWS, Azure), including cloud-native threat detection and response capabilities.
  • Strong stakeholder management skills, with the ability to translate technical risk into business impact for non-technical audiences and executive stakeholders.
  • High analytical and mature problem-solving skills.
  • Excellent communication skills, both written and verbal.
  • Deep understanding of security frameworks and threat modelling approaches, including MITRE ATT&CK, NIST 800-61, ASD Essential Eight, and cyber kill chain methodology.
  • Experience leading cyber incident response efforts, including playbook development, root cause analysis, and post-incident review and improvement.
  • Relevant industry certifications such as CISSP, GIAC (e.g., GCIA, GCIH, GDAT), OSCP, or equivalent that reflect strong capabilities in cyber operations, threat intelligence, and technical leadership.
Imagine working with usWe understand that work means different things to everyone... We know happy, healthy people make great teams, and great teams put more heart into each customer and patient interaction. And that's why we're reinventing work.Imagine a workplace where work didn't feel like work. A workplace where you could shape when and where you work to have more impact. Where flexible working isn't a buzzword, it's a reality.Imagine a workplace that helps you and your family thrive. Where connection, personal development and health and wellbeing are front of mind. To learn more about our benefits go to https://careers.medibank.com.au/culture/rewards-benefits/For you, work should help you Live Better. It should bring you fulfillment and joy. And with Medibank, it could.Inclusion and AccessibilityWe believe in everyone's potential and strive to make Medibank inclusive for all because different perspectives make us better. We encourage applications from everyone, including Aboriginal and Torres Strait Islander candidates, those with disabilities, and LGBTQIA+ community including transgender and gender diverse applicants.For any adjustments or alternative formats during the recruitment process, please contact us at careers@medibank.com.au. To learn about our commitments and employee experiences, go to https://careers.medibank.com.au/culture/diversity-inclusion/

Medibank