Chapter Lead, Vulnerability & Secure Configuration Engineering

Chapter Lead, Vulnerability & Secure Configuration Engineering

• You are an engineering leader with a history of driving complex changes in an Enterprise environment.
• We are one of the best and most advanced Cyber Security teams in Australia.
• Together we can contribute to protecting the group, its customers and community.

See yourself in the team

CommBank are committed to safeguarding our organisation, customers, and communities from the ever-evolving world of cyber threats. Leaders in innovation and resilience, our Group Cyber Security discipline are at the forefront of protecting critical infrastructure, sensitive data, and ensuring trust in every aspect of our operations. A world-class group of highly skilled engineers, they are the custodians of our Group Security posture, delivering innovation that supports our commitment to staying ahead of evolving threats, and ensuring confidence in our digital ecosystem.

• Lead, mentor, and develop a team of engineers, fostering a collaborative and innovative working environment.
• Oversee the delivery of secure configuration and vulnerability management systems and products that protect critical infrastructure.
• Manage the end-to-end lifecycle of vulnerability assessments, secure configuration audits, and remediation efforts.
• Drive the adoption of DevSecOps capabilities within the engineering team to uplift and automate security processes, drive enhancements in platform resilience and ensure secure-by-design principles are implemented throughout the development lifecycle.
• Drive engineering excellence through the development of automated, scalable solutions for risk management, threat detection, and platform resilience.
• Monitor industry trends and emerging threats, ensuring the team stays ahead of the curve.
• Foster a culture of innovation, collaboration, and continuous improvement across the team.

Your Skills and Experience

• Demonstrable experience in leading high-performing technical teams within a cybersecurity or engineering function.
• Expertise in vulnerability management, secure configuration, and risk assessment would be advantageous.
• Strong understanding of DevSecOps methodologies, including CI/CD pipelines, automation, observability and resilience.
• Familiarity with security frameworks (e.g., NIST, CIS, ISO 27001) and compliance requirements.
• A collaborative mindset with excellent stakeholder management and communication skills.
• A passion for innovation and the ability to inspire and motivate a team.
• Experience in tools and platforms used for vulnerability management and secure configuration (e.g., Tenable, Qualys, or equivalent) would be advantageous.
• Proven ability to foster a team culture of learning, technical excellence, and alignment with organisational cybersecurity objectives

Advertising End Date: 13/02/2025