Senior Security Engineer - Penetration Testing

About the role

As a Senior Security Engineer at SEEK, you'll be part of a fast-paced and supportive environment where you can make a real difference. You'll work on complex challenges that have a direct impact on people's lives, helping us evolve our business and reach new heights.

You will lead complex penetration testing engagements and provide mentorship to junior team members. Identifies advanced vulnerabilities and exploits them. Familiar with security concepts across networks, operating systems and applications. 

Reporting to the Head of Offensive Security you will be working closely with the other offensive security team members on a variety of projects and initiatives.

Responsibilities

• Manage full-scope testing projects, from planning to execution, reporting and presenting findings. 
• Conduct comprehensive iOS mobile application penetration testing.
• Perform advanced exploitation techniques. 
• Participate in red team exercises. 
• Streamline processes with automation tools where possible. 
• Contribute to a high-performing culture, where knowledge sharing and growing professionally with the team is encouraged. 
• Contribute to quality assurance and technical review on findings. 
• High-level proficiency in report writing, with ability to produce executive summaries. 
• Strong communication and stakeholder management skills to articulate complex concepts effectively to diverse audiences. 
• Identify novel attacks and vulnerabilities affecting the software stacks used to develop software at SEEK.  
• Mentor junior penetration testers and help improve testing methodologies. 

Skills and experience

Essential Qualifications, Skills, and Experience

• 5-7 years working in an offensive security role.
• Well versed in Web application and API security.
• Advanced skills in Burp Suite, Metasploit, and various exploitation frameworks.
• Familiar with advanced exploit writing techniques. 
• Proficient in at least one programming language (Typescript, JavaScript).
• Basic proficiency in databases and Linux/Windows/ system administration.
• OSCP/GPEN/Crest CCT.

Other Qualifications, Skills and Experience

• IOS mobile penetration testing experience.
• Proficient with software development tools (git, vscode, etc).
• Experience with secure or offensive code review preferred.
• Published research, exploits and vulnerabilities (CVEs).
• Excellent communication skills.

Perks and benefits

At SEEK we offer:

• Support of flexible working, including a mix of office and work from home days depending on your role
• SEEK is committed to preparing for the impacts of climate change and the transition to a low-carbon future, and manages its environmental impacts including on climate change.
• The opportunity to work from anywhere for up to 4 weeks per financial year
• Frequent events including sports days, year-end party, hackathon, and trivia
• Casual dress every day

At SEEK, we are passionate about fostering a culture of inclusion and wellbeing that embraces and values the diversity of our people. We are a purpose driven business that works with heart.

We know teams with diverse ideas, experiences and perspectives are more creative and are critical to ensuring effective delivery and innovating to enable our future success. As such, we welcome applications from people with diverse backgrounds and life experiences, especially as they relate to gender, sexual identity, culture, faith, disability and life stages. If you have the skills, curiosity and an adaptable mindset but don't meet every responsibility or qualification listed in this advertisement, please still get in touch with us. Should you require any specific support or adjustments throughout the recruitment process and beyond, please advise us and we will be happy to assist.

For this role, only those with eligible right to work will be considered.

SEEK kindly requests no unsolicited resumes or approaches from recruitment agencies and will not be responsible for any associated fees.