A rare opportunity for a Security Operations Lead to join a respected not-for-profit in Sydney. This hands-on leadership role sits within a national cyber function, overseeing tooling, detection, and incident response. You'll guide a small team, contribute to meaningful projects, and help shape the organisation's security posture. Enjoy flexible work, strong leadership support, and career development in a purpose-driven environment.

What you'll be doing:

You'll take ownership of day-to-day cyber operations, overseeing the implementation, optimisation, and use of enterprise-grade security tools driving continuous improvement across detection and response, and leading vulnerability management and threat intelligence practices.

Working closely with technical and non-technical stakeholders, you'll play a key role in reviewing solution designs, advising on secure implementations, and driving security uplift through training and clear communication. This is a blended leadership and delivery role, offering scope to mentor others while remaining close to the technology.

• Lead cyber operations across SIEM, EDR, vulnerability management, and incident response.
• Deploy and manage security tooling.
• Oversee daily operations, set team priorities, and coach team members.
• Conduct risk assessments, particularly within third-party engagements.
• Collaborate with architects to ensure security is embedded in design and implementation phases.
• Maintain security documentation and contribute to technical reporting and board-level updates.
• Drive awareness campaigns and user education initiatives across the business.

What you bring:

We're looking for a cyber security professional with deep technical delivery experience and proven leadership capabilities. You've worked in mid-to-large environments, are confident navigating Microsoft cloud technologies, and understand what good security operations look like in a fast-paced but pragmatic setting.

• 5+ years in cyber security operations or security engineering.
• Strong experience with Azure and Microsoft Defender tooling.
• Exposure to frameworks such as ISO27001 or NIST.
• A background in technical delivery, such as engineering or systems administration.
• Certifications like CISSP, CISM, or CompTIA Security+ are highly regarded.
• Confident stakeholder engagement and the ability to communicate risks in a clear, business-relevant way.
• Strong planning, people leadership, and documentation skills.

Aboriginal and Torres Strait Islander Peoples are encouraged to apply.

To apply please click apply or call Cody Berry on 02 8289 3123 for a confidential discussion.