The Australian Health Practitioner Regulation Agency (Ahpra) is the national agency responsible for administering the National Registration and Accreditation Scheme (National Scheme) in partnership with 15 National Boards for the regulated health professions.
This is a fixed-term full time opportunity until April 2027 based in Melbourne working a hybrid (2 office days) arrangement.
About the Role
As an Application Security Specialist with AI expertise, you will be responsible for identifying, assessing, and mitigating security vulnerabilities in software applications, with proven experience in developing and securing AI-enabled systems. This is a new role and Ahpra is looking to bring on someone that has a thorough understanding of application security but has a passion in AI where you will support Ahpra’s investment in the adoption of AI enabled systems ultimately driving improvements across our regulatory framework.
In this role you will work closely with development teams to embed security-by-design principles into the software development lifecycle and ensure applications are secure and compliant with relevant policies, standards, and regulations.
AI technologies are being evaluated and this role will be critical in securing these AI applications, models and enabling future technology adoption within Ahpra. You will have demonstrable experience on securing AI models, data pipelines, and machine learning infrastructure. You will play a critical role in safeguarding Ahpra’s data, information, and systems against the rapidly evolving cyber threat landscape, including emerging risks associated with AI.
Key Accountabilities include:
- Establish clear guidelines and best practices for AI development, DevSecOps, and application secure coding and vulnerability management practises
- Advise on AI governance and compliance, including ethical use of AI, data privacy, and alignment with emerging standards (e.g., NIST AI RMF, ISO/IEC 23894).
- Provide consultancy around securing Gen AI, LLM and ML
- Support threat modelling and risk assessments for all systems & applications including AI solutions, contributing to a proactive security posture.
- Provide Subject Matter Expertise (SME) in application and AI security for enterprise projects across all development phases.
- Provide Information Security consulting and recommendations, ensuring the implementation of approved security requirements
- Discover security vulnerabilities and devise mitigation strategies, as well as report and resolve technical debt
- Track and address security issues effectively, ensuring timely remediation and patching.
- Integrate security tools and processes into the DevOps pipeline
- Collaborate with developers, data scientists, and software teams to ensure security is integrated at every stage of development, including AI model training and deployment.
About you
With extensive experience in Application Security technologies and Cybersecurity solutions, you have a passion for leveraging and using AI and a clear understanding of the challenges AI will bring to an organisation. You are a distinguished professional renowned for delivering secure, innovative, and scalable security architectures. You possess a deep understanding of modern cyber security risk management, control frameworks, strategic cyber security architecture, and a seamless alignment with business architecture and strategy.
Your expertise extends to compliance with key standards and frameworks, including IS18 (with a focus on the Essential 8 strategies), ISO27001, PCI-DSS, and the PSPF/ISM. This foundation has equipped you to develop and implement robust security measures that meet critical industry and regulatory requirements.
- Certifications such as OSCP, CSSLP, or AI-specific credentials (e.g., Certified AI Security Specialist).
- Experience with LLMs (Large Language Models) and securing generative AI applications.
- Understanding of AI governance frameworks and ethical AI principles.
- Experience with MLOps and securing ML lifecycle components.
- Hands-on experience with DevSecOps and securing CI/CD pipelines advantageous.
Committed to empowering organisations in navigating the evolving cyber threat landscape, you excel in crafting security strategies that balance innovation, usability, and protection. Your ability to align security initiatives with business objectives underscores your impact in driving sustainable, secure growth.
You can review more in the attached role description: 
Application Security Specialist - Role Description
What we offer:
- A friendly and supportive working culture with an active social club
- Discounted health insurance with Medibank Private
- Great work/life balance
- Sophisticated open plan workspaces in a 5-star rated building in a central location
- Attractive salary of $155,869 plus Superannuation
To apply:
- Click ‘Apply for this job’ to submit your application. Email applications will not be accepted.
- Your application must include a cover letter, current resume and maximum 2 page document addressing the ‘Experience’ section of the Role Description
- Applicants must be an Australian Citizen, Permanent Resident or hold a valid work permit or visa. Work eligibility will be checked as part of the recruitment process
- Offer of employment will be subject to successful background (pre-employment screening) and Criminal History checks.
- For any queries or a confidential discussion regarding this position, please contact Recruitment team via email at recruitment@ahpra.gov.au
- Applications Close: 11.30pm AEDT Sunday 23 November 2025
Ahpra requires all employees to comply with Ahpra policies, including the Flexible working policy.
We will be shortlisting throughout the advertising period and should we identify suitable applicants, we may cease advertising early.
Offer of employment is subject to successful background (pre-employment screening) and Criminal History checks. Ahpra is an equal opportunity employer committed to providing a working environment that embraces and values diversity and inclusion. We strongly encourage people of all abilities to apply, particularly people of Aboriginal and Torres Strait Islander heritage, and those who may experience diversity or disability related barriers in securing employment. If you have any support or access requirements, we encourage you to advise us at time of application.
With respect, no agencies please.
