Cybersecurity Engineer (AI)

TL;DR

Cybersecurity Engineer (AI): Managing the cybersecurity posture and GRC for regulated diagnostic AI healthcare solutions with an accent on ISMS management and risk remediation. Focus on aligning technical security operations with ISO 27001, GDPR, and HIPAA frameworks to protect sensitive patient data.

Location: Remote (Sydney, Australia)

Company

hirify.global is an AI-driven healthcare company redefining diagnostics to scale global healthcare capacity and improve patient outcomes.

What you will do

• Manage and maintain the ISMS to ensure ongoing compliance with ISO 27001, GDPR, and HIPAA.
• Conduct cybersecurity assessments and lead the remediation of identified risks in collaboration with engineering teams.
• Author and maintain cybersecurity policies, procedures, and controls documentation.
• Support technical security operations including firewalls, networking, endpoint protection, and SIEM.
• Handle security questionnaires and third-party vetting for bids and tenders.
• Champion a security-first culture through awareness programs and embedding security-by-design thinking.

Requirements

• Degree in Engineering, Science, or Information Systems, or 5+ years of experience owning security programs in Information Security or System Administration.
• Technical foundation in at least one of: SOC, networking, system administration, or software development.
• Proven experience managing or contributing to an ISMS aligned with ISO 27001.
• Demonstrated experience with GRC activities, including risk assessments and control frameworks.
• At least one security certification: CISA, CISM, CISSP, SANS, BSI, or equivalent.
• Strong written and verbal communication skills.

Nice to have

• Prior experience in regulated software environments (Healthcare SaaS, medical devices, avionics, or automotive).
• Familiarity with AI governance frameworks (ISO 42001, NIST AI RMF) and the EU AI Act.
• Knowledge of ISO 13485 or ISO 9001 quality management systems.
• Hands-on experience with CrowdStrike, CATO Networks, Mimecast, BeyondTrust, or AIM Security.
• Experience with vetting platforms such as Drata, Vanta, OneTrust, or UpGuard.

Culture & Benefits

• Mission-driven work utilizing AI to transform global healthcare access.
• Flexible work arrangements with WFH options and autonomous hours.
• Yearly L&D budgets, mentoring, hackathons, and secondment opportunities.
• Inclusive family support policies covering fertility, parenthood, and loss.
• Collaborative environment working with a diverse, worldwide team.