Lead Penetration Tester

Lead Penetration Tester This is an on-site, contract role for a Lead Penetration Tester based in Canberra. The Lead Penetration Tester will plan, execute, and oversee penetration tests and red-team engagements across networks, applications, and cloud environments. This role includes scoping assessments, leading technical delivery, reviewing findings, and producing clear, actionable reports for technical and non-technical stakeholders. The individual will collaborate with client security and IT teams to validate vulnerabilities, recommend remediation strategies, and help uplift security posture in line with Australian Government frameworks and regulatory requirements. Day-to-day responsibilities also include mentoring team members, contributing to methodology development, staying current with emerging threats and tools, and supporting pre-engagement meetings and debriefs.

Location ACT

Contract Length 12 months with possible x2 extension

Requirements - AGSVA TSPV Clearance.

Qualifications - Strong offensive security background with hands‑on experience in Penetration Testing and Red Teaming, including planning, execution, and reporting.

- Broad knowledge of Cybersecurity fundamentals, including network security, cloud security, operating system hardening, and threat modeling.

- Experience working with or within Australian Government environments, including familiarity with relevant frameworks (e.g., ISM, PSPF, Essential Eight) and regulatory requirements.

- Demonstrated ability to produce clear technical documentation and present complex findings to technical and non‑technical audiences.

- Experience leading or mentoring security teams, managing multiple concurrent engagements, and owning client relationships.

- Relevant certifications (e.g., OSCP, OSWE, OSEP, CREST, GXPN, CISSP) or equivalent practical experience.

#J-18808-Ljbffr