Cyber Application Security Specialist

**Cyber Application Security Specialist**

**About the role**

You'll also manage and customize our software security testing processes and tools such as DAST and SAST, and coordinate penetration tests as required. As part of Youi’s Cyber Security, you’ll work closely with IT personnel to ensure appropriate controls are in place and monitored.

We’re looking for someone who is a fast learner, a strong communicator, and skilled in coordination. You should be adept at building relationships, driving projects to completion, proactively identifying and solving roadblocks, and maintaining a service-oriented mindset.

Join us in driving one of Youi's key strategic goals, taking ownership, and contributing to our global cyber security strategy. This is your chance to make a real impact

**Key priorities**
- Support the implementation of security patterns for typical controls such as authentication, authorisation, data validation, and session management.
- Support developers, platform engineers, and infrastructure teams throughout the secure development lifecycle.
- Automate secure DevOps processes and integrate automatic security testing scripts.
- Design and deliver a training and awareness program focused on secure coding practices.

**Ways of Working**

This role can be based either at our Sunshine Coast headquarters or in Fortitude Valley, with a hybrid work model that includes in-office presence from Tuesday to Thursday at your chosen location.

**About you**

You should have:

- Bachelor’s degree in a technical or business field (desirable).
- Experience as a.NET Developer and relevant certification (desirable).
- Security certifications (e.g., OSCP, CEH, GWEB, CSSLP) (desirable).
- Strong foundation in security principles, threat modelling, risk management, and vulnerability assessment.
- Experience with cloud services, particularly in Microsoft Azure.
- Proficient in solution architecture reviews and integrating cybersecurity into complex systems.
- Experience with cloud security and tools for code analysis and vulnerability scanning (e.g., Github Advanced Security, BurpSuite).
- Familiarity with agile development practices.
- Skilled in scoping and managing penetration tests, risk-assess findings, and tracking remediation.
- Knowledge of security configuration, automation, and SDLC principles.
- Experience with penetration testing frameworks (e.g., OSSTMM, OWASP).
- Familiarity with automated testing and analysis tools.
- DevOps scripting from a developer perspective.

**How to apply**

Our Internal Talent Acquisition team exclusively manages all hiring processes, and we do not accept unsolicited resumes directed to hiring managers.

**About Youi**

At Youi, we believe in challenging to the status quo. We're not your typical insurance company - and that extends to how we sell insurance and hire our team. With over 2,000 employees, we have ambitious goals to keep growing and continue delivering awesome insurance solutions across new products and distribution channels.

We pride ourselves on our diversity and individuality, both among our employees and the customers we serve. We believe that it is the unique combination of skills, perspectives, and experiences of our people that truly sets us apart.

Our company values - being _dynamic_, _human_-focused, _awesome_ _service_, _honest_, and _passionate_ - guide everything we do. We recognise and value the contributions of each team member to our culture and success.

At Youi, we're unafraid to be different, and we're looking for people who share our values and want to be part of a team that is making a difference in the insurance industry.