A challenging opportunity exists for a Cyber Assurance Professional to join our organization.
Job Description
We are seeking an experienced Cyber Assurance Professional who will be responsible for the design, development, delivery and sustainment of a robust and comprehensive cyber assessment and testing capability. The ideal candidate will have extensive experience with and knowledge of contemporary adversary tradecraft, defensible architecture principles and control and maturity frameworks.
* Assist and coordinate with teams to scope, plan and execute penetration testing independently and/or in collaboration with external vendors.
* Select appropriate testing approach using in-depth technical analysis of risks and typical vulnerabilities.
* Produce test scripts, materials and test packs and tests new and existing networks, systems, or applications to identify vulnerabilities and non-conformance with standards and patterns.
* Work with project teams, security/solution architect, application owners to develop penetration test scope that include relevant threat scenarios.
You will apply your advanced cyber assurance and cyber risks skills to interpret information assurance and security policies and applies these to manage risks. Provide advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards, and guidelines.
Required Skills and Qualifications
The following skills and qualifications are required:
* Detailed understanding of contemporary adversary tradecraft, effective controls, and models for adversary emulation (including Mitre ATT&CK)
* Demonstrated experience in successfully working with external vendors to perform the penetration testing.
* Problem Solving: Within clear organisational policies and business/professional principles jobholder applies analytical thinking to diverse problems.
* Demonstrated experience in the application of security control and maturity frameworks such as ISM, NIST-CSF, AESCSF, CIS 18 / NIST 800-53, NIST 800-82.
* Tertiary qualifications in computer science or technology-related field, or equivalent work or education-related experience.
* OSCP or other relevant certifications desirable.
Benefits
In return for your expertise and dedication, we offer:
* Flexible working arrangements including work from home options.
* Professional development opportunities including projects, industry networks, job rotation, study assistance.
* Volunteering leave to contribute to the community.
* A comprehensive Employee Assistance Program (EAP) to support your well-being.
About Our Process
We value diversity and inclusivity in the workplace and welcome applications from all backgrounds without regard to age, disability, gender, sexual orientation, parental status, race, or religion.