Product Security Lead Are you ready to lead the charge in embedding security into data-driven products trusted by the world’s top universities? As our Product Security Lead, you’ll collaborate with product managers, developers, and data engineers to embed security into every layer of our SaaS platform — from initial design to live deployment. You’ll champion secure SDLC practices, own client-facing security documentation, and proactively tackle product-level vulnerabilities. You’ll also work closely with the broader Nous Group security team to align on standards and certification goals, helping us maintain trust at scale. About Nous Data Insights Nous Data Insights is a world-leading provider of data-led solutions, specialising in the tertiary education sector. We are a medium sized business with over 50 people across offices in Sydney, Melbourne, Brisbane, Perth, London, and Toronto. We work with some of the most prestigious universities in the world as members of our collaborative benchmarking and insights program, UniForum. We are developing new data products to expand our portfolio of solutions and deliver powerful strategic analytics to our clients. Nous Data Insights is part of Nous Group, an international management consultancy with more than 750 people working in Australia, New Zealand, the UK, Ireland, and Canada. Nous is regularly acknowledged as a great place to work as part of competitive workplace reviews. In 2025 Nous was again named one of Australia’s Best Workplaces by Great Place to Work and was recognised as one of LinkedIn’s best places to grow a career, as a LinkedIn Top Company (Australia), and have previously been named Best Management Consulting Firm by the Australian Financial Review. As a Product Security Lead, you will: Embed security practices across the software development lifecycle (SDLC) including secure coding, vulnerability scanning, threat modelling, and design reviews Collaborate with software engineering and product teams to proactively identify and address security risks in our SaaS applications Manage security incidents Own and maintain security documentation and respond to security assessments and questionnaires from clients Support security-related elements of our ISO 27001 and compliance initiatives, in collaboration with the Nous Group security function Implement and maintain product security tools (e.g. static analysis, dependency scanning, credential monitoring) Work closely with DevSecOps and Infrastructure teams to ensure consistency in approach and alignment with internal policies A bit about you: Strong academics, with a Bachelor's degree in Computer Science or related discipline Understanding of data security principles Understanding of web application data security architectures and technologies In depth understanding of data security and privacy regulations in Australia, with the ability to learn (or existing knowledge of) the requirements in other jurisdictions where Nous Data Insights operates. Familiarity with European and UK GDPR frameworks is highly regarded. Excellent problem-solving skills, with a proven ability to diagnose and identify root causes of complex issues Familiarity with tools such as Snyk, OWASP ZAP, GitHub Dependabot, etc, is highly regarded. A proactive approach to self-education in new areas as technology and security best practices Strong oral and written communication skills . Some benefits of working with us Belong to a small, supportive team that cares about your professional development. We offer active career and professional development support, funding professional development activities and reimbursing one professional membership per year. Opportunities to grow with us as we expand into new products and sectors Flexible working arrangements, including WFH options. Hybrid working is supported while acknowledging that the fastest learning happens when working face to face. Staff receive a once off payment to set up your WFH office. A collaborative bonus that reflects company performance is available to all permanent employees. All staff have great flexibility around public holidays. We understand that people of different cultures, religions, and political beliefs may wish to choose to take alternative days of leave from scheduled holidays. Supporting working parents by providing 18 weeks of paid primary carer parental leave and 10 weeks of paid secondary carer parental leave (access to parental leave is gender neutral). Finally, some important details Nous Data Insights is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all. We encourage applications from people of all backgrounds, including Aboriginal, Torres Strait Islander, and First Nations people. If you are interested in working on complex problems and want to be part of a dynamic team that puts people at the centre of everything, then we'd love to hear from you! Please click apply below. We would love to know why you are interested in an opportunity at Nous Data Insights, and would love to read this in your application.
