splose is the AI-powered practice management platform powering better health care. Trusted by over 25,000+ Allied Health professionals around the world, splose is purpose-built to free clinicians from admin and let them focus on what matters most - helping people. Backed by leading VC funds EVP, Spectrum Equity, and Athletic Ventures we have recently announced a record-breaking $46M Series A raise - the largest Series A of any South Australian SaaS company ever. We’re growing fast and investing in our product, our people, and our global growth.
As we rapidly scale our Practice Management Software for Allied Health Professionals, ensuring the rigorous protection of sensitive healthcare data and our internal corporate environments is our highest priority. The Principal Security Engineer will serve as the premier technical authority for product, application, and internal IT security. Embracing a "builder, defender, and breaker" philosophy, this is a highly hands-on role where you will execute complex cloud infrastructure security tasks, define our overarching security strategy, and drive the secure adoption of AI and data analytics. You will champion secure development practices while fostering a culture of psychological safety, balancing hands-on technical execution with high-level commercial advisory for the executive team.
You're a hands-on security leader who enjoys solving complex technical challenges while thinking strategically about business outcomes. You bring deep expertise across cloud, application and infrastructure security, with a builder's mindset and a passion for creating secure, scalable solutions. You're equally comfortable partnering with executives on commercial risk as you are working alongside engineers to strengthen security practices. Most importantly, you thrive in a fast-paced scale-up, collaborating across teams, adapting quickly, and leading with empathy.
Hands-On Cloud & Infrastructure Security – Directly execute expert-level security configurations and provisioning across our cloud environments, specifically managing AWS IAM, AWS GuardDuty, and Snowflake security controls.
Internal IT, Data & AI Security – Define workplace IT security practices, guiding IT/ITS teams on secure operations. Collaborate with the AI Manager to ensure the secure deployment and utilisation of LLMs, and work with Data Analysts and Customer Success (CS) to ensure safe handling of sensitive customer data.
Security Architecture & Threat Modelling – Lead complex threat modelling (e.g., STRIDE) and architectural design reviews for all new platform infrastructure and SaaS features.
Pipeline Auditing & Security Automation – Audit existing software delivery pipelines to embed automated security testing (SAST, DAST, SCA). Build custom security tooling to analyse attack surfaces and manage regression testing.
Commercial Executive Advisory – Provide commercially aligned privacy and security guidance directly to the Executive Leadership Team (ELT/Exco), translating technical risks into business impact.
+10 years of comprehensive experience in the Information Security industry.
Deep hands-on expertise in Cloud Infrastructure Security, specifically utilising AWS (IAM, GuardDuty) and secure data warehousing (Snowflake).
Strong background in Application Security (AppSec) and Product Security (ProdSec) engineering, specifically within scaling tech environments.
Extensive hands-on experience conducting security assessments, complex threat modelling, security code reviews, and vulnerability assessments.
Demonstrated experience navigating healthcare or enterprise compliance requirements (e.g., HIPAA, SOC 2, ISO 27001, Australian Privacy Principles) within a multi-tenant SaaS architecture.
Only shortlisted candidates will be contacted for an initial screening call by our internal TA team.
splose is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. If you need support and adjustments in participating in this process, please let us know!
**We are not accepting recruitment agency submissions for this role.