Head of Cyber Security Operations

Melbourne | Hybrid | National Health & Aged Care Organisation

Permanent | Reports to CISO

Lead and evolve cyber security operations for one of Australia’s most critical health and aged-care providers. We’re partnering with a large, purpose-led national organisation delivering essential hospital, aged-care, and community services across Australia.

This is a senior operational leadership role, accountable for running cyber security operations today while evolving capability over time in a highly regulated, life-critical environment.

The Opportunity

As Head of Cyber Security Operations, you will own end-to-end cyber operations, including security monitoring, incident response, vulnerability management, and operational risk decision-making.

This role is not a “big bang” transformation or consulting-style uplift. Instead, you will provide calm, confident leadership of BAU security operations, while setting and executing a practical, staged roadmap to mature the SOC and security operations capability without disrupting clinical services.

You will operate as a Head of Function, leading teams, building capability beneath you, and acting as a trusted partner to executives during both steady-state operations and high-pressure incidents.

Key Responsibilities

• Lead and own Security Operations (SecOps), including SOC oversight, detection and response, SIEM/EDR effectiveness, vulnerability management, and continuous monitoring
• Act as incident commander for major cyber events, balancing security, availability, and patient safety
• Define and deliver a measured, multi-year SOC and SecOps roadmap, focused on stabilisation, uplift, and embedment
• Ensure operational alignment with NIST CSF, ISO 27001, Essential Eight, and relevant protective security obligations
• Build, lead, and scale high-performing cyber operations teams, including succession and capability development
• Establish meaningful metrics (e.g. detection quality, MTTD/MTTR, operational risk) to guide decision-making
• Engage senior leaders across Technology, Digital, and Operations to enable risk-based, pragmatic outcomes

About You

You are a senior cyber operations leader, not a framework-only or advisory profile.

You bring:

Operational Ownership in Regulated or Critical Environments

Experience leading cyber operations in environments where availability matters, such as health, government, utilities, or financial services, and a strong understanding of regulatory and operational risk.

Proven Delivery with Longevity

A track record of staying long enough in roles to implement, embed, and mature security operations, rather than designing uplift and moving on.

Leadership Beyond the Tools

Demonstrated ability to lead teams, delegate effectively, build second-line leadership, and evolve the function over time.

Incident Leadership & Judgement

Calm, structured leadership during cyber incidents, with the judgement to balance controls, risk, and business or clinical impact.

You’ll Also Bring

• Strong foundation in cyber operations, incident response, and operational risk
• Clear executive communication and the ability to translate cyber risk into business language
• Relevant qualifications and/or certifications (CISSP, CISM, etc.)

Why This Role

• Purpose & Impact: Protect systems that directly support patient care and community wellbeing
• Ownership: Full accountability for cyber operations and their evolution
• Leadership: Operate as a trusted senior leader in a complex, mission-critical environment
• Package: Circa $220K (incl. super) + generous NFP salary packaging

👉 Apply now or contact Vicki Woodcock for a confidential discussion.