Our client is a very successful and well established global organisation and a powerhouse and leader in the integrated supply chain space, supporting multiple customers across several countries.

Their IT group provides technology based strategy, governance and support.

The Penetration Tester role is a newly created role in their Cyber Security Team.

This role is a permanent opportunity and will require an experienced Penetration Tester with a curious mind and passion for all things cyber security.

Reporting into the Cyber Security Threat Prevention Manager, you will be responsible for first line of defence against threat actors, managing identity, access and data and running red team/offensive security activities.

Your responsibilities will include:

• Conduct red/purple team exercises to test the defence capability and effectiveness of the blue team / Security Operations Centre (SOC)
• Conduct web application penetration testing and social engineering assessments, infrastructure and API pen testing and hardening
• Conduct CIS benchmarking to ensure adherence to industry standards
• Perform threat assessment and threat modelling
• Conduct threat hunting and analysis
• Improve threat detection rules
• Manage pen testing schedule and pen testing activities

To be successful you will have demonstrable experience in:

• Minimum 3 + years’ experience as a Cyber Security Specialists/Penetration Tester focusing on Red Team Operations / Threat Hunting
• Excellent knowledge and experience in risk management strategies for safe execution of Red-Blue Team exercises
• Excellent knowledge and experience in using the MITRE ATT&CK framework
• Demonstrated experience in identifying and defending on different TTPs
• Strong knowledge and hands on experience on security tools (Burpsuite, Kali, CrowdStrike, Splunk, etc)
• Strong knowledge and experience in ISO 27000 series or NIST Cyber Security Framework
• Sound understanding of network/server infrastructure and web applications and red/blue/purple team operations
• Strong scripting (PowerShell, Python)
• OSCP certification is a MUST have
• Baseline clearance would be ideal, or at the very least the ability to obtain Baseline and NV1

Keen to work from anywhere in Australia? – tick – this role can be based anywhere.

Sounds like you? Want to know more?

Send your CV to Silvia at Balance Recruitment.

Balance Recruitment is committed to equal opportunity employment. We celebrate diversity and encourage people from all sections of the community to apply.