Lead Penetration Tester

Role Description

This is an on-site, contract role for a Lead Penetration Tester based in Canberra. The Lead Penetration Tester will plan, execute, and oversee penetration tests and red-team engagements across networks, applications, and cloud environments. This role includes scoping assessments, leading technical delivery, reviewing findings, and producing clear, actionable reports for technical and non-technical stakeholders. The individual will collaborate with client security and IT teams to validate vulnerabilities, recommend remediation strategies, and help uplift security posture in line with Australian Government frameworks and regulatory requirements. Day-to-day responsibilities also include mentoring team members, contributing to methodology development, staying current with emerging threats and tools, and supporting pre-engagement meetings and debriefs.

--> For an alternate route of getting in contact with us, email ***email_hidden*** <---

Location: ACT

Estimated Start Date: Tuesday, 01 September 2026

Contract Length: 12 Months with possible x2 extension

Requirements

Australian citizenship

AGSVA TSPV Clearance

Qualifications

• Strong offensive security background with hands-on experience in Penetration Testing and Red Teaming, including planning, execution, and reporting.
• Broad knowledge of Cybersecurity fundamentals, including network security, cloud security, operating system hardening, and threat modeling.
• Experience working with or within Australian Government environments, including familiarity with relevant frameworks (e.g., ISM, PSPF, Essential Eight) and regulatory requirements.
• Demonstrated ability to produce clear technical documentation and present complex findings to technical and non-technical audiences.
• Experience leading or mentoring security teams, managing multiple concurrent engagements, and owning client relationships.
• Relevant certifications (e.g., OSCP, OSWE, OSEP, CREST, GXPN, CISSP) or equivalent practical experience.