- Home
- Job profiles
- Simulated Attack Specialist
Simulated Attack Specialist
Boost the resilience of our digital infrastructures.
Last updated 2 June 2025
On this page
Simulated Attack Specialist
You will play a unique role challenging the status quo to strengthen the resilience of our digital infrastructures. You will provide assurance for whole-of-Government, Critical Information Infrastructure (CII) and beyond through simulating the threat of advanced attackers.
What you can expect to be doing
Design, implement and manage digital security solutions and infrastructure to mitigate sophisticated cyber threats
Conduct attack simulation (vulnerability assessment, penetration testing, red/purple teaming) on Enterprise, Industrial Control and Telco systems
Work closely with respective stakeholders to facilitate the engagements, provide technical consultancy, report findings, and recommend remediations
Develop niche skillsets and customise tools to support attack simulation
Research modern and advanced techniques, tactics, and procedures and conduct technical sharing
Join us if you have
Experience in Enterprise IT/Cloud, Industrial Control Systems or Telco technologies. This includes their underlying operations, architectures, networks, products, and security standards
CRT/OSCP or equivalent penetration testing-specific certifications
Passion for cybersecurity, technically hands-on, willingness to learn, and curious about the inner workings of technologies and exploiting their vulnerabilities
Experience using tools (Nmap, BurpSuite, Metasploit, Cobalt Strike, etc.) and programming languages (Python, VBscript, Javascript, Powershell, etc.)
Public disclosure of vulnerabilities or relevant awards/participations from Capture-The-Flags (CTF) competitions
Excellent analytical, conceptualisation, and problem-solving skills
Strong communication and interpersonal skills to collaborate with key stakeholders
