Get Listed

Cloudtango

CyberCX

Senior Security Consultant, Application Security

  • Company
    CyberCX
  • Job type
    Full-time
  • Workplace type
    On-site
  • Location
    All Offices
  • Posted
    45 days ago

Senior Security Consultant, Application Security (Open to any AUS capital city)

The world is full of wicked problems to solve. That’s why we need you

The challenge of finding vulnerabilities that no one else has found is what gets you out of bed each morning.

You’re at your best when using your skills to solve problems that tackle the most critical challenges facing Australian enterprises and governments today.

You bring your whole self to work, because checking your personality at the door isn’t for you.


We are open to candidates located in any Australian capital city.

  

The work we do matters

We protect and defend our customers and communities by providing the widest range of cyber security professional services in the region.

With more than 1,300 team members across Australia, New Zealand, the UK and US, we are a leading force in cyber security, offering services from strategy, GRC, managed security services, cloud security, digital forensics and cyber education.

If you’re ready to work with teammates that get you, a leader that supports you and customers that need you, then you’re ready for CyberCX.

  

Unimagined opportunity with our Security Testing & Assurance team

On our team, you get access to an unmatched range of customers, work on unique projects and do it while working alongside some of the best in the industry.

Join our innovative team based across Australia & New Zealand, where we collaborate with organisations to build and maintain secure applications. A unique opportunity to be at the forefront of safeguarding critical systems and data across diverse sectors, while collaborating with top-notch professionals.

We celebrate our craft (think Hack of the Month), share our discoveries (internal conferences where we share our research) and you’ve probably seen our team at local meet ups and cons because we support and encourage them to get involved.

You might also know some of our team members from Channel 10’s Hunted (Australia).

  

What this role involves

Deliver a wide range of Application Security services, including but not limited to secure code reviews, software assurance maturity model reviews, threat modelling, DevOps security reviews and tooling integrations, secure standards documentation and general AppSec consulting services.


Day to day you will:

  • Work with a diverse range of customers to identify and solve security problems, both in person and remotely
  • Perform or assist with other security assurance activities such as penetration testing, where appropriate and as required
  • Prepare high quality reports and deliverables detailing risks and findings, making recommendations, and identifying solutions
  • Contribute to presentations and discussions with customers around application security programs and strategy, secure development, assessment outcomes and next steps

Skills and experience

Please note that due to the nature of this role, it is a mandatory requirement that all applicants are Australian citizens either with existing Australian security clearance or the ability to hold an Australian security clearance.


Ideally, you have 3-5 years' experience as a Developer / DevOps team member / Security Testing Practitioner / Cyber Practitioner, with some experience in a consulting environment.


Additionally, you will also have some experience in:

  • Conducting threat modelling exercises and design reviews
  • Building and/or supporting and implementing automated security testing tools
  • Implementing DevSecOps processes and managing CI/CD pipelines
  • Conducting secure code reviews for various languages and frameworks
  • Performing Secure SDLC and Secure DevOps reviews against industry standards such as OWASP SAMM, BSIMM or DevSecOps maturity model
  • Containerisation and Infrastructure as Code (IaC)

Interested but don’t meet every item listed above? If you’re excited about this role but your experience doesn’t align precisely, please still apply. You could be just the right person for this role and CyberCX.

  

Great advantages for great people

A salary package that recognises your experience plus a range of advantages (just some of which are listed below – ask us for a benefits brochure).

  • Flexible working in a hybrid arrangement (a blend of office and WFH) with modern and comfortable workplaces that accommodate different working styles
  • All the usual leave entitlements plus additional paid leave options (including a day off for your birthday) and the chance to purchase extra leave each year
  • Salary packaging options (such as a novated car lease)
  • Health & Wellbeing program including access to our employee assistance service, mental wellness leave, online CyberCX Wellbeing Centre and workplace mental health first aiders
  • Discounts on health insurance and gym membership plus savings on everyday groceries, electronics, technology, fuel, travel and more
  • Personalised development planning, access to training and membership to industry organisations
  • Employee interest groups and communities including a comprehensive Women in Cyber program
  • A comprehensive reward and recognition program – with a special thank you every year on your anniversary!

Be yourself. We embrace diverse perspectives, experiences, and backgrounds. Please let us know if you require additional support or adjustments to assist with your recruitment experience.


We take security seriously. We require all employees to complete background checks (including police and global sanction list checks) annually.

Where appropriate, the CCX Talent Team will work with our preferred panel of agencies. Fees will not be paid for unsolicited resumes that are submitted directly to hiring managers and not through our approved process.

More information