Senior Cloud and Data Security Engineer

Your role at St John of God Health Care  

As a Senior Cloud and Data Security Engineer you will be at the heart of our security operations helping to protect, detect, and respond to cyber threats across the organisation. You will be responsible for the design, implementation and maintenance of the digital security systems and processes that protect our caregivers, patients, and information.

In this senior technical leadership role you will be responsible for overseeing cloud security, data security, data loss prevention (DLP) and security engineering to protect, detect, and respond to cyber threats across the organisation. You will be responsible for leading a small team and providing guidance, mentorship, and advanced technical expertise to uplift security engineering and operations capabilities.

The Position

• Serve as the senior subject matter expert for cloud security, data security, and data loss prevention (DLP), providing authoritative guidance on secure architecture, design patterns, and operational controls.

• Drive continuous improvement of cybersecurity technologies, engineering practices, and operational processes across cloud security, data security, and enterprise DLP capabilities.

• Oversee the operation, optimisation, and lifecycle management of cloud security and data security technologies, ensuring that all controls remain current, effectively deployed, monitored, and functioning as intended.

• Lead and coordinate the effective operation, integration, and continuous improvement of cloud and data security platforms that protect data at rest, in transit, and in use, including Security Information and Event Management (SIEM), Extended Detection and Response / Endpoint Detection and Response (XDR/EDR), Data Loss Prevention (DLP), Cloud Access Security Broker (CASB), Cloud Security Posture Management (CSPM), Secure Web Gateway (SWG), Secure Email Gateway (SEG), Virtual Private Network (VPN), and vulnerability management solutions.

• Lead cyber incident preparedness and response activities in collaboration with the MSSP and internal teams, ensuring timely detection, triage, containment, and remediation of data security incidents.

• Coordinate with internal stakeholders and external vendors to investigate, resolve, and document incidents, ensuring root cause analysis and lessons learned drive future improvements.

• Participate in and help design cybersecurity simulations, tabletop exercises, and readiness assessments to validate and strengthen organisational response capabilities.

• Maintain a current understanding of the cyber threat landscape, particularly within the health sector, and apply this intelligence to strengthen controls, inform architecture decisions, and influence strategic security direction.

• Working with the Cyber Defence Manager contribute to the development and implementation of Cyber Defence, Cloud Security, and Data Security initiatives as part of the broader Digital Security strategy.

• Drive continuous improvement of cybersecurity technologies and engineering processes.

• Maintain a deep understanding of emerging threats, especially across cloud and data domains.

• Provide leadership, coaching, and subject‑matter guidance to caregivers, with a focus on uplifting cloud security, data security, and data loss prevention capability.

• Ensure projects, systems, third‑party engagements, and operational work items comply with relevant Digital Security standards, policies, and architectural guidelines.

You will have senior technical experience hands‑on experience implementing and operating cloud security controls (Azure and/or Google Cloud), including identity, network, data‑at‑rest/in‑transit protection, secrets/keys, logging/monitoring, and configuration hardening. You will demonstrate ability to communicate with technical and business stakeholders, be knowledgeable with contemporary descopes practices and be passionate about technological trends/developments in the areas of digital security.

To succeed you will be Tertiary qualified in Information Systems, Cyber Security or a related discipline, or have at least three years’ experience in equivalent roles. You will also hold or be working towards relevant Security Certifications (CSEC ,CEH, OSCP, vendor certifications, etc.).

Above all, people will be at the core of everything you do committing to and supporting our Mission and Values.

We can offer you

• Highly competitive renumeration

• Permanent full-time position working 76 hours per fortnight

• Located at Perth CBD (Kings Square) or Melbourne CBD (Collins St) offices

• Salary packaging up to $18,550 on a range of benefits such as mortgage, rent, meal entertainment, holiday accommodation or other everyday living expenses as well as options to salary package benefits above the FBT cap on items such as:

  • Novated leasing 

  • work related expenses

  • self-education and

  • additional superannuation

• Employee discount on St John of God Hospital & Medical Services and Private Health Insurance

• Employee support through our dedicated free Employee Assistance Program (EAP)

• A healthy work-life balance through flexible work options, additional purchased leave and well-being programs

• Access to a range of Lifestyle, Health & Wellbeing rewards and discounts

• Paid Parental Leave

• End of trip bike and shower facilities (Perth only)

• Close to Public Transport

If suitable applicants are identified advertisement may close prior to listed date and screening/interviews may commence throughout the advertising process.

Please note unsolicited applications from recruitment agencies will not be accepted.

St John of God Health Care embraces diversity and strongly encourages applications from Aboriginal and Torres Strait Islander peoples and people with disabilities. We are committed to providing a safe environment for all children and vulnerable people in our care and proactively take measures to protect children/vulnerable people from abuse.