Role Description We’re hiring an experienced IAM Engineer with deep, hands-on experience designing, implementing and operating enterprise-scale SailPoint Identity solutions. In this role you’ll deliver automated identity lifecycle (JML) workflows, scalable role and entitlement models, access governance, and complex IIQ customizations. Complementary experience with CyberArk PAM and Microsoft Entra ID (Azure AD) is essential to support identity security and Zero Trust alignment. You’ll work across security, cloud and infrastructure teams to deploy secure, compliant and automated IAM capabilities. - Design, build and maintain end-to-end Joiner/Mover/Leaver (JML) workflows in SailPoint IdentityIQ. - Develop IIQ rules, workflows, connectors, lifecycle events. - Create scalable role models and entitlement structures that enforce least privilege. - Plan and run access certification campaigns: scoping, scheduling, remediation, reporting. - Onboard applications to SailPoint: entitlement mapping, provisioning logic and reconciliation. - Integrate SailPoint with directories and SaaS apps via REST APIs, JDBC, AD, LDAP and custom connectors. - Troubleshoot and resolve complex provisioning, de-provisioning and reconciliation issues across hybrid environments. - Automate operational tasks, improve governance via policy/process/solution enhancements. - Support platform upgrades, performance tuning, health fixes and CI/CD deployment pipelines. - Align Entra role governance with SailPoint access structures; support SSO/federation (SAML, OAuth2, OIDC). - Contribute to Conditional Access policy refinement and identity risk investigations. - Support CyberArk PAM onboarding, credential rotation, API integrations and JML alignment with PAM governance. - Drive continuous improvement, stay current with IAM trends, and support ICAM leadership with reporting and risk communication. Qualifications - Degree / Diploma / Certificate / PostGraduate qualification in Computer Science, Information Security or related field preferred (or equivalent experience). - Relevant certifications (SailPoint, CyberArk, Microsoft) advantageous. Requirements - 4-5 yrs of Extensive, hands-on experience designing, implementing and operating SailPoint Identity/ISC at enterprise scale. - Sailpoint experience is an absolute must have. - Experience with CyberArk PAM and proven PAM integrations and onboarding. - Strong practical experience with Microsoft Entra ID / Azure AD, Conditional Access policies, and AD. - Solid understanding of identity governance, PAM, SSO, MFA, LDAP and federation standards (SAML/OAuth2/OIDC). - Proficiency with Java / BeanShell for IIQ customizations; PowerShell or other scripting skills desirable. - Experience building scalable role and entitlement models and running access certification campaigns. - Knowledge of regulatory and compliance requirements for identity and access management. - Experience with Technical Change Management and Problem Management processes. - Strong analytical, problem-solving, communication and cross-functional collaboration skills. - Able to manage multiple priorities in a fast-paced environment and deliver results. Benefits To learn more about our benefits go to Medibank Benefits . Inclusion and Accessibility We believe in everyone's potential and strive to make Medibank inclusive for all because different perspectives make us better. We encourage applications from everyone, including Aboriginal and Torres Strait Islander peoples, neurodivergent candidates, LGBTQIA+ community including transgender and gender diverse candidates and candidates with a disability. If you need adjustments or alternative formats at any stage of the recruitment or employment journey, we’re here to help. You can let us know directly in the application form, or if you’d prefer to discuss before applying, please reach out to us at careers@medibank.com.au or (03) 8622 5666. Learn more about our commitments and employee stories at Diversity and Inclusion .

Role Description We are seeking a skilled and motivated Senior Security Detection Engineer to join our security team. In this role, you will design, build, and maintain detection content to identify and mitigate security threats across enterprise environments. You will work closely with threat intelligence, threat hunting, and incident response teams to translate adversary behavior into high-fidelity detections, proactively identify detection gaps, and improve detection coverage across the organization. This is a hands-on technical role focused on engineering, tuning, and operationalizing detection capabilities, with opportunities to influence detection strategy and collaborate across security and engineering teams. Key Responsibilities - Design, develop, and maintain detection rules, alerts, and analytics to identify cybersecurity threats across endpoints, network, identity, cloud, and application platforms. - Collaborate with threat intelligence, threat hunting, and security operations teams to understand emerging threats and translate TTPs into actionable detections. - Continuously monitor the threat landscape and proactively recommend improvements to detection coverage and methodology. - Validate, test, and tune detection content to reduce false positives and improve accuracy, performance, and signal-to-noise ratio. - Partner with incident response teams to provide detection insights, improve alert fidelity, and support investigation workflows. - Maintain and enhance the organization’s detection repository within SIEM and detection platforms, ensuring content stays current with evolving attack techniques. - Develop and refine Data Loss Prevention (DLP) detection policies and monitoring use cases to protect sensitive data and support compliance requirements. - Identify detection gaps and raise risks, working with engineering and security stakeholders to prioritize remediation and improvements. - Stay current on cybersecurity tools, frameworks, and adversary techniques to continuously evolve detection engineering practices. - Contribute technical guidance and peer mentorship, helping uplift detection quality and engineering standards across the team. Qualifications - Bachelor's degree in computer science, Information Security, or a related field (or equivalent practical experience). - At least 5 years of experience in cybersecurity with a strong focus on detection engineering, threat hunting, Security Operations Center operations, or incident response. - Experience working with or alongside Red Team/Purple Team activities. - Strong knowledge of Security Information Event Management platforms, log pipelines, and detection engineering workflows. - Proficiency in scripting or programming languages such as Python, PowerShell, or Bash. - Familiarity with adversary tactics, techniques, and procedures (Tactics Techniques Procedures), MITRE ATT&CK, and detection engineering frameworks. - Experience with cloud environments and cloud-native attack/detection strategies (e.g., AWS, Azure, GCP). - Strong analytical and problem-solving skills with a creative approach to detection design. - Excellent collaboration and communication skills with the ability to work cross-functionally with security and engineering teams. - Relevant certifications (e.g., GCDA, GCFA, GCFR, GCIH, GREM, OSCP, CISSP) are a plus but not required. - Experience with Version Control Systems (VCS) (GitHub). - Experience working with SIGMA, YARA, and detection query language structures. Requirements - Hands-on detection engineer who enjoys building and tuning security analytics, collaborating across teams, and proactively improving security posture. - Meaningful influence on detection coverage and technical direction without formal people management responsibilities. Benefits - Base salary range: $109,000 to $149,875; exact salary depends on experience, skills, education, and location. - Eligibility for participation in a highly competitive bonus program with possibility for overachievement based on performance and company results. - Health insurance, wellness and family support programs, life and disability insurance. - Retirement savings plans, paid leave programs, education-related programs, paid holidays, and vacation time. - Many benefits are subsidized or fully paid for by the company. - No relocation support available.

• Exciting Mainframe Security SME, 12 months, contract opportunity.

• Exciting Mainframe Security SME, 12 months, contract opportunity. • Lead end-to-end migration from ACF2 to RACF. • Develop migration roadmap and risk strategies. • Conduct analysis of ACF2 rules and map to RACF equivalents. • Design RACF class structures aligned with security policies. • Implement RACF best practices and optimize security components. • Ensure compliance with regulatory requirements and partner with audit teams.