- Work in one of the most advanced Cyber Security teams in Australia
- Work across an extremely broad range of technologies, and many innovative projects and systems.
- Supportive team environment, with a real focus on staff development and progression
Your role:
The Cyber Security team protects the bank and our customers from theft, losses and risk events, through effective and proactive management of cyber security, privacy and operational risk. The Penetration Testing team under Cyber Attack Vulnerability Assessments (CAVA) perform security assessments of the Groups technology to ensure our applications and infrastructure are adequately robust to resist cyber-attacks.
Do Work that Matters:
Perform complex attack testing activities, provide deep levels of technical knowledge in focus fields, and provide innovative solutions to difficult technical challenges.
Your responsibilities:
- Identify cyber security weaknesses, explore impacts through exploitation, document results, and provide effective remediation recommendations.
- Maintain awareness of advancements in hardware and software technologies (e.g., attend training or conferences, reading) and their potential implications.
- Create comprehensive exploitation strategies that identify exploitable technical or operational vulnerabilities.
- Mentor junior members as a technical SME, providing guidance and review.
- Develop solutions to problems (and testing approaches) for situations for which information is incomplete or for which no precedent exists.
- Apply experience in determining an appropriate level of test rigor and scope for a given system.
- Coordinate and lead larger testing engagements.
What you will need to succeed
- Demonstrated experience in penetration testing across several of the following domains: web applications, mobile applications, infrastructure, networks, Wi-Fi, and cloud security.
- Ability to work closely with system owners, developers, engineers and/or project teams to explain vulnerabilities identified to aid in their remediation.
- Relevant SANS and Offensive Security certifications are desirable.
- Experience testing critical transactional systems in industries such finance and banking, government, and defense are desirable.
- Experience in one (or more) advanced testing areas such as thick-clients applications, hardware and embedded systems, reverse engineering, POS terminals and ATMs, applied cryptography, block chain and smart contracts, exploitation of memory corruption flaws, fuzz testing, radio communications are all highly desirable.
- Experience in developing hacking tools, security research, advisories and presentations is an advantage.
If you're already part of the Commonwealth Bank Group (including Bankwest, x15ventures), you'll need to apply through Sidekick to submit a valid application. We're keen to support you with the next step in your career.
We're aware of some accessibility issues on this site, particularly for screen reader users. We want to make finding your dream job as easy as possible, so if you require additional support please contact HR Direct on 1800 989 696.
Advertising End Date: 05/03/2024