Vulnerability Management Lead

Careers with Impact

More than one million Australians trust HESTA with their money. HESTA is a top-performing industry super fund working for real-world impact. We use our expertise and influence to deliver strong long-term returns while accelerating our contribution to a more sustainable world.

HESTA is also an inspiring and rewarding place to work. That’s because what we do makes a difference to the lives of our members. The people who work at HESTA are not only exceptional at what they do, they’re focused on living and creating a strong organisational culture. We’re an industry super fund dedicated to the people who keep our communities going. People who provide some of the best health, education and community services in the world are HESTA members – and we are proud to serve them.

Bring your authentic and passionate self to this exceptional role #careerswithimpact

At HESTA, we are dedicated to safeguarding the digital world through innovation and excellence. As a leader in superannuation, we are committed to enhancing our cyber security position and protecting our assets from evolving threats. We are seeking a talented and experienced Vulnerability Management Lead to join our dynamic team and drive our vulnerability management strategy to new heights.

About the role

The Vulnerability Management Lead will be responsible for overseeing the identification, assessment, and mitigation of security vulnerabilities across HESTA. This role requires a proactive leader with a deep understanding of vulnerability management processes, risk assessment, and security technologies. The Vulnerability Management Lead collaborates with both business and technical teams to devise remediation plans and offer insights on optimal outcomes to mitigate risks. 

About you

You have significant experience in information security, with a strong focus on vulnerability management and risk assessment to help assess and prioritise vulnerabilities based on impact and exploitability. You have experience in operating systems, networking protocols, application security, and cloud security and vulnerability scanning tools, databases, and exploit frameworks like CVSS and CVE. 

Excellent communication skills are essential for seamless collaboration with diverse stakeholders and to convey complex technical information clearly to ensure remedial action is taken, as well as have strong analytical and problem-solving abilities, with a keen eye for detail and the capacity to handle multiple priorities.

Benefits that matter and make a difference for our employees

• Leave for those moments that matter, an additional 6 days of leave at the end of year, up to 6 days paid volunteer leave, gender neutral paid parental leave of 20 weeks, Gender Affirmation leave, reproductive health and wellbeing leave, Cultural and Ceremonial leave. Access your LSL after 3 years, take AL at half pay, and purchase up to 2 weeks additional leave (just to name a few!).
• Your Professional development matters, up to $5k per year professional development and up to 8 days professional development leave, HESTA scholarships and free access to a range of premium learning tools.
• Your health and wellbeing matters, free annual flu shots and skin checks, incredible social events throughout the year and a comprehensive employee assistance program available 24/7.
• Your financial wellbeing matters, 15% super, financial planning support, end of year payment for all Enterprise Agreement-covered employees, incentivised Employee Referral Program, and novated lease options.

We celebrate, value, and include people of all backgrounds, genders, identities, cultures, and abilities. We welcome and support applications from First Nations people, physically, neuro or culturally diverse, LGBTQI+, and people of any age. We are proud to be WGEA accredited as an Employer of Choice for Gender Equity. 

We want all candidates to feel safe, included and provided with the best opportunity to thrive, if you require reasonable adjustments during your application or throughout the recruitment process, please reach out to a member of the Talent team careers@hesta.com.au and we’ll call you to discuss. 

Please note: Applications via recruitment agencies will not be accepted for this position.