Trilogy Care is one of Australia's fastest-growing approved Support at Home providers.
We're a vibrant, purpose-driven team dedicated to helping people live independently at home for longer. Our work goes beyond requirements – it's about creating meaningful impact for our clients, their families, and our people.
AI isn't a future initiative here. Frontier AI from providers such as Anthropic Claude, OpenAI, and Google, along with agentic AI fleets and real-time data pipelines, are already part of how we operate every day. Now, as we continue to grow and innovate, we need someone to build and lead the security program that protects it all.
Role Overview
This is a true security leadership role. You'll be responsible for designing security architecture, delivering compliance and governance frameworks, and overseeing the secure adoption of AI across the business. This is not a role focused on managing ticket queues or coordinating vendors.
You report directly to the CIO – you own the function, strategy, risk, compliance, operations, and culture.
What You'll Do
The full scope of information security – from compliance frameworks (ISO 27001, SOC 2, Essential 8) through to cloud posture, endpoint protection, AI governance and incident response. You'll build the roadmap, set priorities, deliver outcomes and report to the executive team on risk and progress.
* Compliance & certification – ISMS, audit cycles, regulatory obligations (Privacy Act, Aged Care Quality Standards)
* Cloud & infrastructure security – controls, detection, monitoring, vulnerability management
* AI & agentic governance – securing autonomous AI systems, governing what agents can access, audit trails on automated actions
* Endpoint & identity – EDR, MDM, SSO, conditional access, least‐privilege
What makes you a fit
You don't wait for someone to hand you a risk register. You build it, prioritise it, present the trade‐offs to the exec team and then go fix the things that matter most.
* Built a security program, not just maintained it; 7+ years of program‐ownership experience
* Achieved ISO 27001 and knows the path from gap analysis to certification audit
* Operated in AWS hands‐on, designing controls for containerised and serverless workloads, and understands SOC 2 obligations in cloud environments
* Passionate about governing AI systems – prompt injection, data leakage, model access, agent action boundaries
* Delivered compliance outcomes – ISO 27001, SOC 2, Essential Eight, Privacy Act, implemented controls, managed audit cycles, achieved certification
* Communicates at executive level and explains technical remediation to engineers
* Experience securing AI/ML or LLM‐based systems in production (Anthropic Claude, OpenAI, or similar)
* Background in healthcare, aged care or other regulated sectors with PII/PHI obligations
* DevSecOps and automation experience (Python, CDK, CI/CD security scanning)
* EDR/MDR platform experience (CrowdStrike, Huntress or similar)
* Endpoint management (Intune or equivalent)
* Experience growing a security function from sole practitioner into a team
Why Trilogy Care
* Security as a foundation for trust, not a compliance checkbox
* AI and technology as core to the operating model
* Leadership, autonomy and direct executive access
* Budget authority and vendor decision‐making
* Meaningful work that protects the data and dignity of thousands of older Australians
* Opportunity to grow the function and build a team as the organisation scales
#J-18808-Ljbffr