About us:

A wholly owned subsidiary of the Pharmacy Guild of Australia, Guild Group Holdings is an APRA regulated entity and provides specialist services to support the Australian Allied Healthcare and Community Services sectors, to enable improved health and wellbeing outcomes for all Australians. It’s how we’re ‘there for those our communities rely on’. 

Our employee experience:

We thrive together at Guild Group.  Our people feel truly connected to our purpose and are motivated by it. With our eyes on the future, our people thrive on a challenge and learn from each other. Guild Group team members truly care about each other and our customers, and everyone contributes to make a real difference by supporting the people our communities rely on.

Your new role:

The Security Operations & Engineering Lead reports to the Head of Information Security and strengthens the organisation’s security posture across infrastructure, identity, cloud, and vulnerability management. The role oversees security operations, including the SOC, incident response, and threat intelligence, and manages the MSSP to ensure service delivery and SLA compliance.

Core accountabilities:

Infrastructure Security & Engineering

• Manage the Managed Security Services Provider (MSSP) to ensure delivery aligns with contractual obligations and SLAs.
• Oversee security within Microsoft 365, including identity and access management, and privileged account controls.
• Implement and maintain security measures across network, web, cloud, and endpoint environments.
• Lead a robust vulnerability management program to identify, assess, and remediate security risks.
• Drive the execution of the Microsoft Zero Trust Roadmap to enhance the organisation’s overall security posture.

Security Operations & Incident Response

• Lead the MSSP SOC team in monitoring, detecting, and responding to security incidents.
• Implement continuous security monitoring, threat detection solutions, and incident response plans.
• Develop Threat Informed Defence strategies to address external and insider threats.
• Oversee security testing, digital forensics, and standardise procedures for consistent operations.
• Be available 24/7 to lead major incident responses, including war room coordination and recovery efforts.

The role will also recommend and review security infrastructure, SecOps, IR enhancements, solution designs, detection and response rules, and vendor deliverables for HoIS sign-off.

About you:

• Degree in computer science, Information Systems, or related field
• Appropriate certification such as GIAC certified in Security Operations, Incident Handling, Threat Intelligence, Security Architecture, Detection Analysis, Advanced Threat Defence, and Continuous Monitoring, Microsoft Certified Security Operations Analyst Associate.
• Proven experience (circa 10 years) in Security Operations & Engineering senior roles.
• Experience with NIST CSF, MITRE ATT&CK, STRIDE, VERIS and other Security Frameworks. Experience working in BFSI sector
• Australian Privacy Law, OAIC APP’s and ASIC Cyber Resilience Good Practices, APRA CPS234/230 etc.
• ISO 27001, ISO 27035, Information Technology Infrastructure Library (ITIL)

What we offer?

• Remuneration package + 15% annual short- term incentive
• Hybrid working arrangement (2 days in office, 3 days from home and every second Friday)
• The opportunity to work as part of a newly formed Information Security function.
• Paid parental leave for eligible staff and an extra day of paid leave in addition to annual leave entitlements
• Enhanced long-service leave
• Staff discounts and offers with leading retailers and an innovative Employee Assistance Programme
• Wellbeing initiatives, learning opportunities and purpose led businesses.

If you have any questions, please email Jason at recruitment@guildgroup.com.au. Please do not apply via email