Create Alert
Apply now »

Offensive Security Specialist

Posting date:  24 Apr 2024
Job requisition ID:  42810
Location: 

Auckland, AUK, NZ Christchurch, CAN, NZ

Workplace Type:  Hybrid


Create impact as an Offensive Security Specialist.

 

Join the largest insurance group in Australia and New Zealand. 
 

Mō te Tūranga | About the Role


As an Offensive Security Specialist, you'll be at the forefront of safeguarding our organisation's people, information, and assets through delivering innovative offensive security services. Your role involves continuously evaluating and challenging security controls to enhance our security landscape and create a safer digital environment.


Day-to-day, you'll dive into infrastructure and application penetration testing to ensure our systems meet stringent security requirements and to uncover any potential vulnerabilities. You'll also immerse yourself in scenario-based technical assessments, mirroring the tactics, techniques, and procedures of real-world threat actors, all aimed at achieving our security objectives.


Beyond assessments, you'll play a pivotal role in driving the entire technical assessment lifecycle, from planning to execution, while also contributing your expertise to shape and refine our technical assessment policies, standards, and procedures.
This is a permanent position can be based in either Australia or New Zealand.

 

Mō mātou| About us


•    Expertise in infrastructure and web application security testing methodologies and frameworks like OWASP, PTES, OSSTMM, and ISSAF.
•    Familiarity with OWASP standards such as ASVS (Application Security Verification Standard) and CVSS (Common Vulnerability Scoring System), including the OWASP Testing Guide.
•    Technical proficiency in web technologies such as HTML, JavaScript, Java/J2EE, ASP/.NET, PHP, Rest APIs, AngularJS, NodeJS, Bootstrap, etc.
•    Proven track record in conducting vulnerability assessment and penetration testing of various platforms including Web Applications, APIs, Mobile, and Network Infrastructure, both on-premise and within cloud environments (e.g., AWS/Azure).
•    Experience collaborating in SecDevOps environments or interfacing with development teams to gather security testing requirements, autonomously managing penetration tests, and providing effort estimations.
•    Proficiency in working with the Kali Linux environment, as well as Android/iOS environments, including installing/troubleshooting security tools and resolving OS-related issues.
•    Capability to set up insecure applications (e.g., OWASP Broken Web Applications) in testing environments to evaluate security tools for application scanning, identifying false positives, and managing remediation processes.
•    Working experience in Nessus, Burp Suite Pro, ZAP Proxy, Maltego, Wireshark, SQLMAP and other widely used security tools.
•    Penetration testing security certifications such as OSCP / OCSE / CRT / CCT.
 

Applications close on Wednesday, 08 May 2024 at 23:59pm.  

 

ABOUT US

 

IAG is the largest general insurance group in Aotearoa New Zealand and Australia. We’re also a tech and research facility, a hub for climate change experts and a centre of resilience design. We chat over coffee with customers, advocate for them in the corridors of Parliament and back them up in the community when life’s moments hit hardest.​ 

​ 

You’ll know our brands – AMI, NZI, State Insurance, NRMA Insurance, CGU, WFI and ROLLiN’ to name a few. Together they turn our IAG purpose of making your world safer into action by helping, supporting ambitions and making insurance accessible. 

We acknowledge Tāngata Whenua in Aotearoa and are committed to growing Māori prosperity and well-being in Aotearoa through He Rautaki Māori (IAG’s Māori Strategy). 

 

We celebrate unique viewpoints shaped by life experiences, cultures and passions. We expand careers, genuinely connect with community, lead with a powerful purpose and celebrate what makes you individual.  

 

We're passionate about social issues, walk the talk on sustainability and strive to do more than standard on things that matter, including women in senior leadership, Indigenous empowerment and creating inclusive environments. We’re proud to be an accredited family-friendly workplace and are committed to being a safe and supportive space for all our employees. We do this because we’re ready for you. 

 

All this shows up in what we offer: 

  1. Competitive remuneration and recognition  
  2. Flexibility through our MyFlex program - supporting you to live life to the full 
  3. Grow your skills and career development with the IAG Academy program 
  4. A certified Family Inclusive Workplace
  5. Join great employee network communities  

 

We’re ready for you. Apply today.

 

Learn more about who IAG is here.


 

                                                                                                                                                                                                                                                                                                   

Apply now »