NSW Government

DevSecOps Engineer

🔍 Statewide

📁
IT Support & Administration
💼
NSW Health Pathology
📅
REQ546403 Requisition #

Employment Type: Permanent Full Time
Position Classification: Health Manager Level 3
Remuneration: $127,150.00 - $144,444.00 per annum plus superannuation
Hours Per Week: 38
Requisition ID: REQ546403
Location: Newcastle or Sydney
Applications Close: 24th February 2025 - 11:59pm



About the opportunity

Do you want to join an amazing team to safeguard the privacy of millions of patients? This position is for you!

NSW Health Pathology is the largest public pathology provider in Australia with over 6000 staff and pathology health related data sets for millions of patients. 

We are looking to expand our security team in order to meet the growing demand for security assessments and reviews, secure process development, and security governance.


What we can offer you

  • Accrued Days Off in addition to Annual Leave 
  • Generous salary packaging options and other fringe benefits
  • Corporate wellbeing programs, including the Fitness Passport
  • Learning and development opportunities, including in-house training with RTO My Health Learning

What you'll be doing

This role services all NSW Health Pathology portfolios, and is responsible for advising on, developing and implementing security frameworks and policies to reduce the risk to their data, systems and the critical clinical patient data within them. The role is also responsible for identifying and analysing potential cyber threats and other security risks and their potential impacts. Once assessed, this role will design and estimate the costs associated with implementing appropriate mitigations and present options to executive stakeholders to influence secure and responsible decision making at the highest levels of our enterprise.
 
The DevSecOps engineer is the design authority who will provide architectural leadership to the development of security solutions to all digital information security challenges; and is responsible for performing risk and vulnerability assessments and reviews and conduct proactive research to identify and understand new threats, vulnerabilities, and exploits impacting clients' environment.
 
The role will provide information security consulting to programs and projects in accordance enterprise architecture and business direction Provide guidance and oversight to the design and implementation of cyber security services and controls aligned with the Information Security Management System (ISMS), consistent with ISO/IEC 27001 :2022, and in line with the requirements of the NSW Government Cyber Security Policy. Utilise automation and code first approaches when problem solving to deliver sustainable and maintainable solutions.

Interested in joining Australia’s largest public pathology service? Apply now by addressing the following questions:

  1. Proven ability to conduct comprehensive security assessments, including penetration testing, security audits, and compliance checks including statewide and strategic executive sponsored programs.
  2. Relevant tertiary qualifications, certifications and/or demonstrated extensive experience in supporting security operations technologies: Firewalls, IPS/IDS, Proxies, Remote Access, VPN, Load balancing, Web Application Security, and Azure and AWS native cloud security solutions.
  3. Proven experience in the following security domains: ISO27001, Essential Eight Controls, ISMS, Identity and Access Management, network security, application security, Public Key Infrastructure, Data Protection, Trusted Platforms, network threat mitigation and security governance.
  4. Demonstrated expert knowledge in leading threat assessments and risk workshops.
  5. Proficiency in DevSecOps practices and methodologies to streamline and automate the statewide secure software development lifecycle, including automated quality and security checks.
  6. Demonstrated extensive programming experience, supporting the ability to conduct secure code reviews, penetration testing and develop new security solutions.
  7. Strong written and verbal communication skills and the ability to clearly articulate complex cybersecurity concepts to a broad and diverse audience including technical, non-technical and leadership staff.
  8. Proven organisational skills with the ability to meet deadlines and respond to changing priorities and demands whilst working independently in a multidisciplinary work environment.



Need more information?
  1) Click here for the Position Description
  2) Find out more about applying for this position
For role related queries or questions contact Desmond Horsley on Desmond.Horsley@health.nsw.gov.au


Working Rights

This position is a permanent position. To be eligible for permanent appointment to a position in NSW Health, you must have an Australian citizenship or permanent Australian residency. Please note: A person who is not an Australian citizen or a permanent resident is only eligible for temporary employment for a period not longer than the duration of their current visa.
New to NSW Health Pathology?

The preferred candidate may be required to undergo a functional assessment prior to appointment.

Talent Pool

If the selection panel identifies more than one suitable candidate for the role, an eligibility list will be created for future permanent full time / part time, temporary and casual vacancies.

Our Commitment to Diversity and Inclusion

NSW Health Pathology is an equal opportunity employer committed to creating an inclusive workplace. We seek to recruit from diverse applicants and create teams with skills, perspectives and experiences that complement each other at work. We welcome suitably qualified applicants regardless of age, ethnicity, socio-cultural background, disability, sexual orientation or gender identity.

My Profile

Create and manage profiles for future opportunities.

My Profile

My Applications

Review and track your applications.

My Applications