Address
Form of work About us
We are the challenger in the cybersecurity market both in Australia and Southeast Asia. We are founder-led and have a fresh and direct approach to working with our clients, breaking away from the older/traditional models, and are well respected for that.
We’re on a mission to be the most trusted security partner. Through the delivery of impactful outcomes that build resilience, we enable innovation and increase competitiveness. From the excellence of our delivery to the integrity of our people, we put care and everything we do and see every client as a #clientforlife. #ClientForLife
We live by 6 values that have helped us grow and create long lasting bonds with our clients to date:
CARE FOR YOUR TEAM
We can only do our best work in an environment of support and respect. We always strive to gain a better understanding of the perspectives and challenges of our team mates.
OWN THE OUTCOME
We love our craft, and take pride in making a difference. We face our clients challenges as a genuine partner, and tackle them as if they were our own.
TELL IT LIKE IT IS
We owe it to our clients to be honest, transparent and straight-talking.
BE CURIOUS AND GENEROUS
We are richer by sharing our knowledge. We look for ways to connect with colleagues, clients and the industry to broaden our skills and networks.
STRIVE FOR BETTER
At work, home and in the community, we will try to enact positive change. We don’t settle for second best, speaking up and supporting others to drive that change.
We are made of information security professionals from all professional and personal backgrounds, forming a truly unique and international environment, fun to work and grow in.
We are conveniently located in the heart of the cities it operates within. We have a fresh and direct approach to working with our clients, breaking away from the older/traditional models, and are well respected for that.
Job Description
Our Red Team, Offensive Security Consultants work with organisations and technical teams to perform a variety of assessments and provide practical advice to keep them secure. Sekuro's Offsec team are generally familiar with and apply themselves to most aspects of cybersecurity but specialise in web application security, code reviews, architecture design, network security, attack simulations or even specialist fields such as mainframe or SCADA systems. They help to ensure cybersecurity issues and identified along with their associated risks, and guide organisations to manage this risk in a practical manner.
The Senior Consultant role is suited for professionals with experience in manual penetration testing, Red Teaming, web application testing, mobile application testing and a passion for all things security.
In addition to offering great career growth opportunities, the position offers benefits such as training and certification opportunities, flexible working arrangement and a good working culture whilst working with a team of like-minded, friendly people.
The responsibilities of a Senior Consultant include:
Upkeep a No bullshit, collaborative, open and professional culture.
Provide mentorship and support to peers and subordinates, and help in their professional growth (technical and consulting).
Lead by example and make sure your juniors live by the Sekuro values.
Act as the engagement quality gate for several concurrent engagements (ensure the quality, suitability and timeliness of engagements).
Deliver individual engagements yourself to maintain your skills set and consciously acquire new competences though formal training and self-development.
Pass certifications as required to maintain your status as an expert in your field (in addition to blog posts, training, CTFs and presentations).
Help improve internal processes, building towards efficient and standardised delivery for Sekuro services.
Attend industry events regularly to learn, earmark potential recruits, network and identify opportunities.
Support commercial opportunities when relevant.
Requirements
A suitable candidate would have some or most of the following attributes:
Minimum of 3 years of experience in applied, web, mobile and infrastructure penetration testing, including manual testing
Minimum 4-6 years of experience overall in relevant areas
Experience with common development languages
Experience with common vulnerability detection tools
Good communication skills
Meticulous report writing ability
Well-spoken and presentable
Comfortable in managing short and long projects
Comfortable engaging with both technical business and technology stakeholders
Holds current penetration testing certifications such as CREST, OSCP, GPEN, etc.
Additionally, candidates with competency in the following are highly desirable:
Some knowledge of ISO 27001, PCI DSS, SABSA
Experience with security architecture design & reviews.
Experience in manual code reviews
Experience stimulating real-time cyber-attacks using red-team exercises, perform red-teaming security measures for our client’s IT assets.
Benefits
What's in it for you?
Work in a dynamic and modern company with a great culture and great people
Increased responsibilities in a client-facing role to boost your career
Exposure to a wide range of businesses across all industries
Grow your skillset across the entire engagement lifecycle
Flexible work arrangements when practical
Training and certification opportunities
Support for your charitable or technical causes you may lead outside or work
Opportunities to travel abroad (if that motivates you)
Work Experience
4-5 years
Industry
Technology
City
Melbourne
Province
VIC
Country
Australia
Postal Code
3000
