Hey, Pen Testers. You know the drill; let’s start with the reasons we reckon you might be interested in this Senior Tester role, with this particular, boutique consultancy (hint: it’s that rare mix of a technical focus, a truly supportive team, and some warm & fuzzy feelings. Yes, really).
- Your work will remain technical and only technical. This business has pre/sales personnel, which means you can focus on what you do best: breaking things.
- You’ll earn 12% superannuation. Yes, 12%, instead of the standard 10.5%. Nice, right?
- Your future pay rises will be crystal clear from day one. That’s right, pay rises. Say goodbye to these “discretionary” annual review chats where your potential salary increases depend on what side of the bed your manager woke up on. Want to be acutely aware of what you need to do to earn an extra $10k in salary? You’ll know. How about the next $10k extra? If you do X, you’ll earn Y. The next $10k? You get it. Point is, the ways to increase your salary are transparent from the get-go.
- WFH anywhere in Australia. If you’re based in Melbourne, the team would love to see you pop into the office a couple times a fortnight, but the takeaway is… WFH. That’s it.
- You’ll receive time and funding to pursue your own security research, which you then share with the team. This is all about trading knowledge and watching that big brain get even bigger.
- This business will match your personal charitable donations, dollar for dollar, to a certain value each year (who said testing was cold & clinical when you can feel this warm & fuzzy).
- You can expense up to $1000 in mental health expenses per year (this is a business who puts their money where their mouth is when they say they care about your mental health, which they absolutely do).
- You’ll be given interesting, geeky tools for work, research or… just for fun.
- You’ll be joining a business who genuinely do good in the world, via strongly supporting various charities and NFPs, and performing pro-bono advisory work (which you can get involved in).
This is the part of the job ad where many other, lazy recruiters would post a job description. I refuse to. Why? Because YOU’RE the pen tester, and YOU don’t need to be told what YOU’LL be doing with YOUR time during YOUR day.
Apart from standard (I use the term affectionately) testing of web apps, infrastructure and the like, you could also be involved in various other things like reverse engineering, social engineering / red teaming, vulnerability research, perhaps a touch of risk management, a bit of scripting and coding… The list goes on, but know that everything you sink your teeth into is offensive security centric.
Here’s the deal; this isn’t a job for someone fresh out of university, or someone who’s only just obtained their OSCP (although absolutely fair play to you if you have).
Similarly, if you’re the Supreme Overlord of all things pen testing, this role probably isn’t for you, either (although, again, 10 points for rising to the position of Supreme Overlord).
We know, we know, we’re in the “goldilocks” zone, but so be it. If you’ve got a few years of testing under your belt, and if the above holds any appeal to you, we reckon you might be juuuuust right.
One last thing to mention, which is arguably the most important; cocky, brash, big ego types just won’t gel well with this business. We get it, you’re a tester, you love to pwn, and you love to celebrate your pwnings, and rightly so. Thing is, there’s a difference between being humble in victory and shouting your own name from the rooftops, telling the world how cool you are. You dig?
HOW TO APPLY Click APPLY and/or contact Michael directly on mpearman@decipherbureau.com for a 100% confidential, informal conversation where your privacy will absolutely be respected.
Decipher Bureau and the clients we partner with are committed to creating a diverse environment and are proud to be equal opportunity employers. All qualified applicants will be considered for employment without attention to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.