Hybrid Work Model
We're not your typical Cyber team. We are technically sharp, delivery focused and trusted by some of Australia's most complex enterprise and government organisations, and we are looking for a VMS & Exposure Management Specialist to lead vulnerability management engagements across a diverse client portfolio.
About Orro
We're an Australian success story, now close to 500 people strong, delivering secure, end-to-end digital solutions across cloud, collaboration, cyber security, data services and network infrastructure, all backed by over 20 years of experience. Trusted by some of Australia's biggest brands, Orro leads the way in designing, building and operating digital infrastructure that delivers greater efficiency, agility, performance and resilience. Our solutions take the stress out of tech for more than 400 businesses and over 20 million Australians every single day.
Our mission? To create "future now" solutions making it faster, simpler and safer for people to access, store and share information, wherever they are and whoever they're with. But more than that, we know that real impact comes from connecting people, not just machines. That's why we take the time to understand our clients; how they work, what matters to them, and where they're headed so we can deliver not just what they need today, but what they'll need next.
With offices in Sydney, Melbourne, Canberra, Brisbane and Perth, and teams across New Zealand, the Philippines and the UK, Orro is known for delivering future-ready solutions, backed by deep expertise, genuine human insight and lasting partnerships.
What You'll Be Doing
You will work directly with enterprise and government customers to scope, deploy and operate vulnerability management programs using the Rapid7 Insight Platform. Sitting within our VMS & Exposure Management team, you will translate technical findings into prioritised remediation strategies and communicate progress clearly to both technical teams and senior stakeholders. Your work will directly shape how customers understand their risk posture and measure the effectiveness of their security programs.
* Scope, design and deploy solutions across the Rapid7 Insight Platform family including InsightVM, InsightAppSec and InsightCloudSec
* Conduct vulnerability scans and assessments, analysing findings by context and risk to produce actionable remediation recommendations
* Develop and maintain vulnerability management policies, procedures and standards tailored to each customer environment
* Build automation playbooks using InsightConnect to improve service delivery and the quality of customer insights
* Produce tailored reports that communicate vulnerability management status and progress to both technical and non-technical audiences
* Mentor and support high performing technical team members across engagements
* Collaborate with internal and customer teams to ensure alignment with frameworks including Essential 8, NIST CSF, CIS18 and ISO/IEC 27000
What You'll Bring
The Essentials
* Hands on experience with vulnerability management platforms such as Rapid7, Tenable or Qualys, including scan management, analysis and remediation strategy development in complex environments
* Strong working knowledge of cloud infrastructure, networking, firewalls and core security concepts
* Experience with scripting languages such as Python, Bash or PowerShell, and with automation platform and playbook development
* Ability to document and communicate technical detail clearly to both technical and non-technical audiences, including comfortable stakeholder presentations
* A qualification in computer science (Certificate, Diploma, Bachelor's or Masters) and/or relevant current certifications such as Blue Team Level 1, SANS Incident Responder, SC-200, SC-100 or equivalent
Bonus Points
* Rapid7 accreditations such as RSP, RSTP Foundations, RSTP InsightVM or RSTP InsightVM Advanced
* Experience mentoring technical teams in a managed services or consulting environment
* Knowledge and practical application of Essential 8, NIST CSF, CIS18 or ISO/IEC 27000 series frameworks
Even if you don't tick every box, don't let that hold you back as we have a number of positions at varying levels. If this sounds like your kind of challenge, we'd genuinely love to hear from you!
Why Orro?
At Orro, we're proud to support our people and the people who matter most to them in meaningful and inclusive ways. From public holiday swaps that embrace family and cultural diversity, to generous parental and caregiver leave, flexible work options, and company-wide mentoring, we're here to help you thrive at every stage of life.
We also invest in the future through our Emerging Leaders Development Program, nurturing the next generation of talent from within. On top of that, you'll enjoy 3 days of paid volunteer leave each year, novated leasing, employee discounts, and full access to our wellbeing platform packed with expert fitness plans, nutrition tips, and tools to help you feel your best, inside and out.
We value different perspectives and proudly celebrate the diversity of our people. We are committed to creating an inclusive workplace where everyone can thrive, including LGBTQI team members, people with disabilities and those on the autism spectrum. Your unique experience is not just welcomed here, it is valued.
Orro is deeply committed to sustainability and social responsibility. By joining us, you contribute to initiatives that support our communities and help create a better future.
Note: The role is subject to state and federal police background checks.
#J-18808-Ljbffr