EL1 Lead Penetration Tester
EL1 Lead Penetration Tester
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
- Initial Contract Duration: Until 31 July 2025 with further extension of 12 Months
- Number of Extensions: 1
- Location: ACT NSW QLD VIC
- Security Requirements: Must be able to obtain Negative Vetting Level 1
- Working Arrangements: Hybrid
Flexible Working Arrangements (including remote working arrangements) will be considered on a casebycase basis against the business requirements of the department and the needs of the immediate work area. Reduced Activity Period A reduced activity period may apply where the specified personnel will not work unless the buyer has provided preapproval in writing which includes: public holidays; and Christmas shutdown - Maximum hours
40 hours per week
About the Role:
SoftLabs is seeking EL1 Lead Penetration Tester for ICT Labour hire at their technology consulting based in ACT NSW QLD VIC.
Job details
Security Specialist to work in the Cyber Security Section of the Digital Solutions Division (DSD).
The Cyber security Specialist will be part of a wider Tiger Team focusing on uplifting the security posture of different applications across the department. The Cybersecurity Specialist will lead the identification analysis and mitigation of vulnerabilities in critical applications. This role focuses on ensuring the departments applications are resilient to evolving cybersecurity threats while collaborating with developers and technical specialists to implement effective security solutions.
Collaborate with crossfunctional teams to integrate security measures into the design and implementation of new systems and technologies.
Develop strategies to secure technologies including legacy applications.
Conduct cyber security assessments vulnerability scans and pen testing to identify potential risks and vulnerabilities.
Build infrastructure and tooling to automate and move cyber security activities left.
Collaborate drive and build a program of work to uplift the way the organisation identifies and makes riskbased decisions for applications
Key duties and responsibilities
- Conducting security assessments including code reviews vulnerability scans and penetration tests.
- Collaborating with developers and software engineers to remediate vulnerabilities and implement secure coding infrastructure and architecture practices.
- Designing and implementing secure configurations for applications and their supporting infrastructure.
- Developing and maintaining documentation on vulnerability findings risk mitigation strategies and best practices.
- Advising application teams on cybersecurity risks and mitigation approaches.
Essential Criteria
- Extensive experience in vulnerability management penetration testing and secure design.
- Knowledge of security frameworks such as OWASP NIST or ISO 27001.
- Knowledge and handson experience implementing government security standards such as the ISM and PSP.
- Familiarity with application security tools (e.g. Burp Suite Nessus or similar).
- Strong analytical skills to assess and prioritise vulnerabilities for remediation.
- Ability to work across diverse technology stacks and environments.
Desirable Criteria
- Certifications such as CISSP OSCP or CEH.
- Experience with cloud and onpremises security models.
- Knowledge of education or government security requirements.
Expected Start Date: Thursday 27 February 2025
Job Type: Contract
Rate: As per Australian Market Standards
If you are interested in this position please click Apply with your resume in WORD and send your details for review. If you wish to have a confidential discussion call us onorfor more information.
Employment Type
Full Time
