UniSuper is Australia's best kept Superannuation secret. The $110B fund recently opened to the public and we need your help to spread the word about Australia's hidden superannuation gem.
This is the fund for Australia's best thinkers, creators and investigators who want to do the right thing to shape a better tomorrow. We come to work every day to ensure our members create a future worth retiring for that doesn't cost the earth.
The opportunity We're all here to help deliver greater retirement outcomes for our members. Your role supports UniSuper doing this by ensuring adequate protection of member and business information from inappropriate disclosure, that integrity is maintained, and information is available when required
You are responsible for:
Supporting design and development of secure solutionsEnforcement of Security standards and guidelines with respect to application security and secure SDLCImplementing structured support practices that determine design with stakeholders and designing secure solutionsPerforming and coordinating all form of security testing activities, including Code reviews, penetration testing and automated testing, SAST, DAST, SCA, etcConducting application assessments, threat models and ensuring that risks are analysed and mitigated appropriatelyBeing a point of contact for all issues arising for Application Security services.Facilitating and Supporting developer education, better adoption of Application Security tooling and better understanding of security risks due to vulnerabilities and defects as identified from time to timeGuiding development teams and providing application security industry best practice advice and recommendationsEnsuring Application security tooling, DevSecOps tooling, CI-CD pipelines, integrations are maintained optimally and enhanced as per changes in environmentCo-ordinate and validate application security assessments and penetration tests performed by third parties.Keeping Information Security procedures, architectures, standards and guidelines, AppSec Handbook and/or other technical requirement documents up to date as required.About you We are looking for an individual who has worked in fast moving transformation environment and is comfortable working with a degree of ambiguity.
Bachelor's degree in Information Security/Computer Science Program or equivalent is required and Master's degree is preferred.Knowledge in Information Security; security-related infrastructure/technology associated with networks, internet, messaging, operating systems, firewalls, intrusion detection, cryptography, Wi-Fi, cloud, vulnerabilities, threat landscape and intelligenceUnderstanding of application security assessment tools such as Attack Proxies, Vulnerability Scanners as well as penetration testing methodology.In-depth knowledge and understanding of operation of assessment tools (including but not limited to Metasploit, Nmap, Burp Suite, Powersploit, and Cobalt Strike)In-depth knowledge of network mapping, vulnerability scanning, penetration testing, and Web Application testingThorough understanding of current and emerging security threats, relevant security solutions, and limitations of such solutionsLeadership acumen and a passion to apply it in a dynamic business environmentWhat US offer We're passionate about knowledge and sharing it amongst our members and our employees. We believe that a better future is ours to make. We take a long-term outlook and will invest in our employee's development and training. With an open culture where all roles can flex you will also receive;
A personal development plan and yearly funding to support your career goalsCompetitive salary with 17% super and highly achievable performance incentiveAdditional 3 days paid leave over the Christmas period – equating to 5 weeks leavePaid volunteer days and flexible working options. Promote local employment to your region, community or member organisation with a uWorkin Talent Community. Find out more .
#J-18808-Ljbffr
