Job Title: Cyber Security Penetration Tester Expert
  
Introduction: Are you an expert in Cyber Security Penetration Testing with a proven track record of identifying and addressing security vulnerabilities? Join a dynamic team at the forefront of government service delivery, helping secure critical IT infrastructure and ensuring robust cyber security defenses. We are seeking a skilled Cyber Security Penetration Tester to take on complex challenges and help improve system security for a high-profile government agency.
Day rate is open but subject to experience, rough estimate around $700-$1,000 p/d + Super
Only candidates with recent government experience will be considered at this stage.
Please note you need to be in a position to obtain a Baseline Security clearance (Australian citizen).
Key Duties and Responsibilities: As a Cyber Security Penetration Tester Expert, your responsibilities will include:

• Leading penetration testing and vulnerability assessments for various technologies, including web applications, mobile platforms, and enterprise-grade systems.
• Overseeing the execution of test cases using in-depth technical analysis to identify risks and vulnerabilities.
• Leading complex threat simulation activities to uncover weaknesses and opportunities in security controls.
• Developing and managing penetration testing plans, ensuring they are tailored to the needs of specific systems and stakeholders.
• Providing highly technical subject matter expertise to stakeholders, helping improve security posture across systems.
• Collaborating with system owners to develop test scopes and ensure effective remediation of identified vulnerabilities.
• Coordinating and managing risk analysis and cyber security assessments.
• Providing on-the-job training and coaching to junior staff to transfer knowledge and support succession planning.
• Reviewing and communicating technical findings and recommendations in clear, actionable reports.

Essential Criteria: To be considered for this role, you must demonstrate:

1. Penetration Testing Expertise (Level 5 – SFIA):
   
   • Proven experience planning and driving penetration testing activities within a defined business area.
   • Ability to provide authoritative advice and guidance on penetration testing, including assessing vulnerabilities and the effectiveness of defense mechanisms.
   • Experience in identifying the need for new penetration testing approaches and contributing to security testing standards.
2. Simulated Attack Exercises and Penetration Testing (Level 5 – CIISEC):
   
   • Expertise in conducting complex penetration tests using both commercial and bespoke tools.
   • Ability to lead teams in simulated attack exercises and penetration testing, including the use of exploits in testing scenarios.
   • Relevant certifications such as CHECK Team Leader, CREST Certified Tester (Infrastructure/Web Applications), or equivalent.
3. Specialist Cyber Security Advice (Level 4 – SFIA):
   
   • Experience providing detailed and specific advice regarding the application of penetration testing and cyber security practices to organizational planning and operations.
   • A solid understanding of specialized knowledge areas within cyber security, with a collaborative approach to ensuring advice is relevant and appropriate to the organization’s needs.

Desirable Skills and Experience:

• Experience in web application penetration testing against complex enterprise platforms.
• Expertise in infrastructure penetration testing on both Windows and Linux based platforms.
• Strong background in cyber risk management and the ability to coordinate with stakeholders to improve system security.

About the Team: The team is responsible for delivering cutting-edge cyber security services to one of Australia's most important government agencies. You will work in a highly collaborative environment, tackling complex cyber threats and securing critical IT infrastructure that supports millions of Australians.
About the Organisation: The agency is at the forefront of government service delivery, using state-of-the-art technology to build world-class platforms and capabilities for Australians. By joining this team, you will play a vital role in ensuring the integrity and security of essential services and technology.