WorkCover Queensland is entering an exciting new chapter, guided by a renewed strategic focus and strong executive leadership shaping our 2030 Strategy. We’re embarking on an enterprise-wide transformation to strengthen our impact and continue making a positive difference in people’s lives.

This Cyber Security Lead role is an opportunity to take ownership of how we detect, respond to, and continuously strengthen our cyber security posture. Reporting to the Cyber Security Manager – Detect & Respond, you’ll play a critical leadership role in maturing our threat detection and incident response capabilities while guiding and developing a high-performing Level-1 team.

If you’re passionate about building operational excellence, thrive in fast-paced security environments, and enjoy mentoring emerging talent, this role offers the chance to combine deep technical expertise with people leadership — all while helping protect the organisation in an increasingly complex threat landscape.

What You’ll Do

• Lead, coach and mentor the Detect & Respond Level-1 team, including trainees and engineers, fostering a culture of learning, accountability and cyber awareness.
• Support the Cyber Security Manager – Detect & Respond in delivering high-quality, 24x7 security operations services.
• Lead the design and implementation of advanced detection strategies using Microsoft Sentinel, Defender and associated Microsoft security technologies.
• Drive automation and orchestration of incident response playbooks to improve response times and reduce manual effort.
• Oversee queue hygiene, alert triage and classification to ensure efficient and accurate security operations.
• Direct and coordinate Level-1 incident investigations, including containment, resolution, escalation and Post-Incident Reviews (PIRs).
• Provide expert technical advice during major incidents and crisis situations, ensuring alignment with policy and regulatory obligations.
• Tune SIEM alerts to reduce false positives and improve detection fidelity.
• Collaborate with internal stakeholders and external partners to enhance threat intelligence integration and orchestration workflows.
• Design, maintain and continuously improve security operations playbooks and procedures aligned to NIST and MITRE frameworks.
• Participate in a rotating on-call roster for major incident response and provide higher-level operational support when required.
  
  

What We’re Looking For

You’re a technically strong and operationally minded cyber security professional who enjoys leading from the front. You combine deep hands-on expertise in security operations with the ability to mentor and uplift junior team members.

You remain calm and decisive during high-pressure incidents, balancing speed with accuracy and compliance. You’re curious by nature, always looking to refine detection capabilities, automate intelligently, and improve processes.

You’re comfortable communicating with senior stakeholders, translating complex technical issues into clear, actionable insights. Most importantly, you care about building a resilient, high-performing team that continuously improves and adapts to evolving threats.

What You’ll Bring

• 2+ years’ experience in cyber security operations.
• 2+ years’ experience leading or managing a small Level-1 security operations team.
• Strong, demonstrated expertise in Microsoft Sentinel, including automation and orchestration.
• Experience across Microsoft security technologies (Defender, Entra, Purview and related toolsets).
• Proven ability to manage competing priorities in complex, regulated environments.
• Experience communicating technical matters to senior management.
• Tertiary qualification in cyber security, information technology, business management or related field.
• Microsoft AZ-500 certification, SE 200 (preferred).
• Security+, CySA+, SANS/GIAC, CISSP, or CREST certifications are highly desirable.
  
  

A Bit About Us

Our vision is to be the best workers’ compensation insurer, making a positive difference to people’s lives and keeping Queenslanders working. We turn care into action, act with integrity, and work together to unlock what’s possible. If you value empathy, collaboration, and continuous improvement, you’ll find a great community at WorkCover. 

Working in a collaborative team environment within a supportive and engaged organisation, you’ll enjoy a hybrid work model, access to personalised learning and development opportunities and the holistic support of our health and wellbeing program. We offer industry competitive salaries, a generous superannuation scheme (including co-contribution) and study assistance. You can find out more about our Employee Benefits by visiting Working at WorkCover Qld. 

How do I apply?

If this sounds like you, we’d love to hear from you. Applications close April 4^th, 2026. 

We are committed to ensuring WorkCover reflects the diversity of the Queensland community. We welcome applications from First Nations peoples, members of the LGBTQIA+SB community, people of all ages, people who are neurodivergent, people with disability, and people from culturally and linguistically diverse backgrounds.

To ensure you have the best and most inclusive experience, please let us know if you require any reasonable adjustments or accommodations to help you confidently showcase your skills and potential. You can contact us at recruitment@workcoverqld.com.au or let our recruitment team know during your conversation with them.

Pre-employment checks will be conducted on all prospective employees. This includes a Right to Work in Australia Check, Police Check, Education Check, Reference Check, and where appropriate a Visa Check. The information provided will be treated as confidential in accordance with the Information Privacy Act 2009 (Qld).