Penetration Testing Lead

Be part of a team where everyone belongs, and individuality is celebrated
- True Flexibility - 2 days in the office
- Permanent Full Time, based anywhere in Australia

Following the recent appointment of our General Manager Cyber Security, we are actively expanding our team within the newly created Cyber Security Business Unit to support our cyber vision as a business enabler and trusted advisor. Seize the opportunity to enter the Financial Services industry, with a leading organisation that is dedicated to enhancing Australians' financial well-being through superannuation, investments and quality financial advice. Join us in delivering crucial business initiatives and supporting platforms to better serve our clients.

**The Role**

We are currently seeking a Penetration Testing Lead who wants to take the next step in their career and build on their technical expertise and proficiency in executing end-to-end penetration testing engagements. This role involves comprehensive holistic responsibilities across our penetration testing activities including scoping, testing, and reporting, utilising external partners and resources as necessary. As the Penetration Testing Lead you will also define the strategic approach for penetration testing activities across our organisation. This is your chance to contribute to the security and resilience of our systems while making a significant impact on the financial well-being of Australians.

**Key Responsibilities**:

- Define a penetration testing strategy in collaboration with the Cyber Security team.
- Develop, scope and execute a penetration testing and offensive security program across Insignia Financial including the Vulnerability Disclosure Program (VDP)
- Maintain Insignia Financial penetration testing framework and standard
- Engage and lead external vendor resources for penetration testing related projects.
- Track and report on vulnerabilities / remediation activities internally including related fixes with respective technical teams
- Monitor vulnerability disclosure program (VDP) findings / vulnerabilities with relevant team/s

**To be successful in this role you will possess**:

- CREST Registered Penetration Tester (CRT)
- Industry recognised security certifications (CISM, CISSP, OSCP, GXPN, CEH etc.) or similar which demonstrate detailed security knowledge are desired
- Familiar with penetration testing frameworks
- NIST CSF, OWASP, PTES

In addition to being a technical security specialist, exceptional communication skills are imperative for understanding testing requirements, generating test reports, and presenting technical information to diverse audiences. The ability to lead both internal and external resources, coupled with strong problem-solving and collaboration skills, is essential. Attention to detail, adaptability to evolving technologies, an ethical mindset when handling sensitive data, and the capability to build and maintain relationships with key stakeholders are also key attributes we are seeking.

**Benefits**
- Development opportunities at an ASX top 200 company
- A professional, supportive and friendly culture
- A range of corporate and lifestyle benefits

**The Business**

Insignia Financial is one of Australia's leading wealth management organisations, undertaking a rapid and exciting transformation. The Insignia Financial group has been helping Australians secure their future since 1846. Over the decades, we have grown substantially to become a leading provider of quality financial services and are listed on the Australian Securities Exchange in the ASX top 200 (ASX: IFL).

We have a Women in Technology community which exists to bring together female and non-binary people within the tech world at Insignia Financial. This supportive forum is eager to progress and make change in the technology space - does this sound like you?

**To Apply**

Applicants will be required to provide evidence of their eligibility to work in Australia, and at a minimum be required to undertake police and basic credit checks as a condition of employment.

AW