29th June, 2026
The work we do matters
We protect and defend our customers and communities by providing the most comprehensive range of cyber security professional services in the region.
With specialist team members across Australia, New Zealand, the UK and US, we are a leading force in cyber security, offering services from strategy, GRC, managed security services, cloud security, digital forensics and cyber education.
If you’re ready to work with teammates that get you, a leader that supports you and customers that need you, then you’re ready for CyberCX.
How will you make an impact?
Join CyberCX and help organisations build secure applications and strengthen their Secure SDLC practices. This is a great opportunity to work on meaningful AppSec challenges, deliver high-impact consulting, and influence secure development at scale.
- Mature Security Design Reviews and Maturity Assessments, to identify risks early and define roadmaps for clients.
- Innovate and contribute to emerging security challenges in secure AI and supply chain resilience.
- Enhance methodologies, build tools, and refine delivery assets to scale operations and services for the SMB market.
Day to day you will: - Deliver impactful Application Security services, including threat modelling, Secure SDLC reviews and secure development training
- Build trusted, long-term customer relationships and uncover growth opportunities across new and existing clients
- Act as a technical leader and subject matter expert in Application Security, both internally and externally
- Produce clear, high-quality reports and confidently present findings, recommendations and roadmaps to customers
- Help ensure successful project delivery by meeting quality, timing and client expectations, while keeping budgets on track
- Contribute to innovation by improving methodologies, developing tools, and supporting R&D and practice uplift
Skills & Qualifications - 1+ years’ experience in application/product security, penetration testing, DevOps and/or software development
- Skilled in threat modelling, design reviews, and secure code reviews across multiple languages and frameworks
- Experienced in building and implementing automated security testing tools, DevSecOps processes, and CI/CD pipeline management
- Knowledge of Secure SDLC, Secure DevOps, containerisation, IaC, and industry standards such as OWASP SAMM and NIST SSDF
- Tertiary qualification in information systems, cyber security, software development, or equivalent industry experience
- Strong communication, stakeholder engagement, analytical problem-solving, and agile resilience, with the ability to build alignment with organisational values and practices
Interested but don’t meet every item listed above? If you’re excited about this role but your experience doesn’t align precisely, please still apply. You could be just the right person for this role and CyberCX. Please note that due to the nature of this role, it is a
mandatory requirement that all applicants hold
full New Zealand working rights. Great advantages for great people A salary package that recognises your experience plus a range of advantages (just some of which are listed below – ask us for a benefits brochure).
- Flexible working in a hybrid arrangement (a blend of office and WFH) with modern and comfortable workplaces that accommodate different working styles
- All the usual leave entitlements plus additional paid leave options and the chance to purchase extra leave each year.
- Health & Wellbeing program including access to our employee assistance service, mental wellness leave, online CyberCX Wellbeing Centre and workplace mental health first aiders
- Personalised development planning, access to training and membership to industry organisations
- Employee interest groups and communities including a comprehensive Women in Cyber program
- A comprehensive reward and recognition program – with a special thank you every year on your anniversary!
Be yourself. We embrace diverse perspectives, experiences, and backgrounds. Please let us know if you require support or adjustments to assist with your recruitment experience.
We take security seriously. We require all employees to complete background checks (including police and global sanction list checks) annually.
We kindly request no agency submissions for this role. Unsolicited CV’s will not be accepted, and no fees will be payable.
Apply For Job