_{24th December, 2025}

Candidates experienced with Application Security including Threat Modelling, Secure Code Review, and an understanding of frameworks such as the OWASP SAMM and NIST SSDF are strongly encouraged to apply.

Please make sure this experience is included in your CV when applying


Key Roles & Responsibilities

• Deliver the top Application Security services as well as STA services where required to a high standard, specifically those with large or complex testing requirements.
• Build out and promote strong, long-lasting relationships with a diverse range of customers, and identify and explore opportunities within existing and new customers.
• Act as a subject matter expert and technical leader both within STA and externally across practice for Application Security services, writing technical or industry marketing collateral and representing CyberCX at industry events.
• Contribute to the build out of Application Security services by developing new service offerings and assisting with developing go-to-market strategy.
• Upskilling practices internally at CyberCX to assist in growing delivery specialists.
• Prepare high quality reports detailing security issues, making recommendations, and identifying solutions, and lead presentations and discussions with customers around Application Security work performed, key results, strategies, processes recommendations and next steps/roadmap to success.
• Engage with Customer Sales and Customer Solutions team in a presales-capacity to assist with technical methodology aspects, costing scoping, standardised proposal methodologies, RFQs and tenders.
• Ensure that KPIs around client expectation management, deliver deadlines, quality of work and deliverables etc are met, including maintaining visibility of project budget vs actual delivery time and following up deviations.
• Coach and mentor team members as well as other members of external practices to enable learning, development, and capability uplift.
• Assist the Executive Director – STA Capability to develop standardised methodologies, identify and build tools, and improve processes.
• Assist with R&D, innovation, and practice improvement activities both within STA and external practices, ensuring R&D and innovation are at the centre of what we do.
• Actively build cross-Practice and cross-Function collaboration with key leaders across CyberCX, and continuously look for ways to add value. Facilitate communication, partnerships and cross-pollination across the business to allow teams to better engage and service customers.

  
Preferred Qualifications, Experience & Skills

• Tertiary qualification in information systems, cyber security, software development or a similar field, or equivalent industry experience
• 8+ years of experience in penetration testing, application security services, and secure software development
• Able to deliver 80% of the Application Security services catalogue.
• Seen as an SME in market, with demonstrated prowess on numerous client engagements.
• Experience in cloud security and automated application deployment processes.
• Strong stakeholder engagement and communication skills with an ability to build credibility with senior leaders and internal working teams.
• The ability to build a shared understanding of, and commitment to, CyberCX’s purpose, values and agreed processes and practice.
• Strong analytical and problem-solving skills, able to perform the most difficult project even where they have no prior experience with that exact project type.
• Skilled in responding to setbacks in an agile and resilient manner.

About CyberCX

CyberCX is the leading independent cyber security services organisation in Australia and New Zealand.  CyberCX is Australia’s greatest force of cyber security professionals. CyberCX has united the country’s most trusted cyber security companies to deliver the most comprehensive end to end cyber security services offering to Australian enterprises and governments.
  
We are cyber security experts first and foremost. We’re a unified team of highly qualified, certified and skilled professionals working together on the same mission: to protect and defend Australian organisations from cyber threats.
  
We specialise in: Strategy & Consulting | Governance, Risk & Compliance | Security Testing & Assurance | Identity & Access Management | Security Integration & Engineering | Managed Security Services | Digital Forensics & Incident Response | Cyber Capability, Education & Training

NB. Due to Christmas holidays all applicants will be reviewed week commencing 12th Jan ***

Apply For Job