HBF Employee Benefits 

• FREE Corporate Gold Hospital Insurance (for you and your family) 
• 3 additional wellbeing days off a year (on top of our standard 20 days annual leave and 10 days personal leave) pro rata 
• 2 volunteering days per year 
• 18 weeks paid parental leave 
• Access to corporate discounts across a range of gyms, retail, restaurants, and hotels 
• Hybrid working options

About the Role  
As the Penetration Testing Delivery Lead, you will be responsible for coordinating and managing penetration testing and security assurance activities across HBF. Acting as the central point of contact, you will oversee internal and external testing engagements, ensure alignment with risk and regulatory frameworks, and translate technical findings into meaningful business insights. This role is key to strengthening HBF’s cyber resilience and driving continuous improvement in security practices.

The key responsibilities of this role include:

• Developing and managing the enterprise penetration testing calendar, ensuring coverage of critical systems.
• Coordinating scoping, execution, and remediation of testing activities with internal stakeholders and third-party vendors.
• Translating technical vulnerabilities into business-relevant risk language for executive reporting.
• Overseeing remediation tracking and escalating overdue actions to ensure timely closure.
• Introducing and maturing assurance practices such as red teaming, breach simulation, and cloud-specific testing.
• Ensuring alignment with regulatory frameworks including APRA CPS 234, CPS 230, and PCI DSS.

This role is open to candidates based in Brisbane and Perth.

About You 
You are a detail-oriented and proactive cybersecurity professional with a strong background in penetration testing and security assurance delivery. You excel at translating technical findings into business-relevant insights and thrive in environments where stakeholder engagement, vendor coordination, and regulatory alignment are key to success. Your ability to manage multiple testing engagements and drive continuous improvement makes you a trusted advisor in strengthening cyber resilience.

Ideally, you will have:

• Tertiary qualification in Information Security, IT, or related field, or equivalent industry experience.
• Proven experience coordinating or delivering penetration testing in complex environments.
• Strong understanding of testing methodologies (e.g. OWASP, OSSTMM, PTES) and vulnerability classes.
• Excellent stakeholder management and communication skills, including executive-level reporting.
• Experience managing third-party vendors and ensuring quality assurance of deliverables.
• Familiarity with regulatory frameworks such as APRA CPS 234, CPS 230, PCI DSS, and NIST CSF (desirable).

Does this sound like you?

Great! Applying is as simple and quick as clicking on the “Apply Now" button to complete your application. 

Our recruitment and selection process includes a variety of assessment methods including reference checks, National Police Clearance and verification of working rights in Australia.  

At HBF, we believe in the potential of every individual. We’re committed to creating an inclusive workplace where diverse perspectives are celebrated, because they make us stronger. We encourage applications from everyone, including Aboriginal and Torres Strait Islander peoples, people with disabilities, and members of the LGBTQIA+ community.

We want you to Be You, Be Bold, and feel supported every step of the way, so if you require any adjustments during the recruitment process, please contact us at careers@hbf.com.au to discuss how we can accommodate.

To learn more about our commitments visit: Community Initiatives | HBF Health Insurance

Advertised: 20 Oct 2025 W. Australia Standard Time
Applications close: 07 Nov 2025 W. Australia Standard Time

Back to search results Refer a friend

Expressions of Interest