Why HBF?
We’re not just another health insurer. We’re a not-for-profit organisation driven by a clear mission: to deliver for our members in the moments that matter. That means everything we do is about making health insurance better, simpler, and more personal for our members nationally

HBF Benefits

• Fully subsidised Gold Hospital Insurance Cover
• Flexible working and Work from home options
• 3 additional well being days off a year (on top of our standard 20 days annual and 10 days personal leave)
• 2 volunteering days per year
• 18 weeks paid parental leave
• Access to corporate discounts across a range of gyms, retail, restaurants, and hotels

As the Technology Audit Lead, you’ll be the go-to person for all things audit, assurance, and compliance in the Technology division. Reporting to the Head of Technology Governance you will join our high-performing Technology Governance team, working closely with internal stakeholders and external auditors to deliver timely, accurate, and high-quality audit outcomes.

What you’ll do

Lead the technology audit function: You’ll run the show for all technology-related audits internal and external, from planning to evidence gathering, walkthroughs to closure, you’ll keep things on track and on time.

Drive compliance & governance projects: You’ll lead compliance initiatives and support our Control Assurance Program, helping to ensure we stay ahead of the curve and on top of our obligations.

Engaging stakeholders: You’ll be the bridge between auditors, risk teams, and our technical leads, translating complex requirements into practical actions and driving collaboration across teams. You’ll keep senior leaders in the loop with clear, concise reports and dashboards that show progress and future state.

Managing technology & cyber risk: You’ll help identify risks, manage remediation plans, and continuously improve cyber governance, working with frameworks like APRA CPS 230/234, NIST, and ISO27001.

About you
You have several years experience in technology risk, audit, or compliance roles, ideally in financial services. You understand regulatory frameworks like CPS 234 and CPS 230, and you're comfortable juggling multiple audits or compliance projects at once.

You’re a natural communicator, equally comfortable communicating with auditors, tech leads, or execs and you know how to keep people aligned, even when timelines are tight.

Ideally, you’ll also bring:

• Strong project management experience (bonus points for PMP or PRINCE2).
• Industry certifications like CISSP, CISA, or CISM.
• Deep knowledge of cyber security governance, risk, third-party risk management, and IT controls
• Experience working with standards like NIST 800-53, ISO27001, PCI-DSS, COBIT, etc.
• A collaborative mindset and a knack for solving problems before they become roadblocks

Next steps
To apply, click on the “Apply Now" button to complete your application, attaching a copy of your CV outlining your skills and experience in relation to this role.

At HBF, we don’t just accept difference - we celebrate it, we support it, and we thrive on it for the benefit of our employees, our products, and our community. HBF is a place of belonging.

We are proud of who we are, and we encourage applications from diverse groups such as Indigenous and Torres Strait Islander people, physical ability, age, sexual orientation, gender identity or expression and family background, including caring responsibilities.