Senior and Lead Vulnerability Assessors / Penetration Testers

Role Title
Multiple Senior and Lead Vulnerability Assessors

Location
QLD, ACT, VIC

Working Arrangement
Onsite
Working arrangements are at the discretion of the business area, based on operational needs. Due to the nature of ASD's work, not all roles can accommodate work?from?home arrangements.

Clearance required
This RFQ is for NV2 and TSPV cleared candidates only.
All candidates must complete the ASD Organisational Suitability Assessment (OSA) prior to commencement.

Company overview
The Australian Signals Directorate is a statutory agency in the Defence portfolio that defends Australia against global threats and advances national interests through the provision of foreign signals intelligence, cyber security and offensive cyber operations as directed by the Australian Government.

Job Description
Vulnerability Assessors identify, assess and prioritise threat vulnerabilities discovered through penetration testing and provide reporting to strengthen security architecture and uplift organisational risk awareness.
ASD requires multiple APS6 equivalent Senior and Lead Vulnerability Assessors (including Security Specialists and Security Engineers).
Suitable candidates will undergo ASD's OSA prior to commencement and will then be allocated to business areas based on operational requirements.

Duties and Responsibilities
Include but are not limited to:

• Perform forensically sound investigations on a wide range of assets and devices related to security infrastructure in accordance with established procedures.
• Conduct investigations resulting from security incidents or direction from senior leadership.
• Assess and explain threat profiles for various electronic devices.
• Provide advice on strategies to improve ASD ICT security and reduce the risk of device compromise.
• Interpret and comply with policy and legislation governing ICT security within ASD and across government.
• Evaluate and assist with the application and compliance of security controls, identifying vulnerabilities across information systems.
• Apply appropriate system design methodologies, tools and techniques using predictive or adaptive approaches.
• Design, code, verify, test, document and refine complex programs or scripts as required.

Education/Certifications required

• Certification in CREST Registered Penetration Tester or CREST Registered Threat Intelligence Analyst is desirable.

Knowledge/Skills required

• Demonstrated experience undertaking threat intelligence, modelling tasks or threat assessments.
• Experience performing penetration testing and assessing vulnerabilities, defensive effectiveness and mitigation controls.
• Proven experience preparing and maintaining executive or business reporting relating to threat assessment, analysis and mitigation strategies.

Employment benefits

• 12-month initial contract
• Two 12-month extension options
• Up to 40 hours per week
• Opportunities across multiple ASD business areas
• Inclusion in a merit pool for future vacancies
• Additional Lead (EL1) roles also being recruited across the agency

Diversity and Inclusion
We value diversity and are committed to creating an inclusive environment for all employees.

Veterans
Defence and Federal Government industry experience is highly desirable. We strongly encourage veterans and individuals with Defence experience to apply. Your unique skills and background are highly valued, and we are committed to supporting your transition into this role.

About Cleared
At Cleared, we provide tailored recruitment solutions to individuals seeking their next opportunity and to organisations searching for talent within Defence Industry, Intelligence and National Security.