Job search
Offensive Cyber Security Specialist
Queensland Corrective Services Information Technology Security; Digital Services and Information Technology Group; Organisational Capability; Brisbane
Queensland Corrective Services, Digital Services and Information Technology Command have an exciting opportunity for a AO8 Offensive Cyber Security Specialist role.
Job details
| Position status | Fixed Term Temporary |
|---|---|
| Position type | Flexible full-time |
| Occupational group | IT & Telecommunications |
| Classification | AO8 |
| Workplace Location | Brisbane Inner City |
| Job ad reference | QLD/664577/25 |
| Closing date | 22-Oct-2025 |
| Job duration | 12 Months with possible extension |
| Contact person | Luke Zillman |
| Contact details | Phone: 3308 2121 Access the National Relay Service |
The QCS cyber security team is responsible for protecting and securing QCS assets that are in scope of the agencies Information Security Management System (ISMS).
In this role you will:
• Conduct comprehensive system penetration testing on various systems, networks, and applications to identify and exploit security vulnerabilities.
• Simulate sophisticated cyberattacks, including network attacks, web application exploits, social engineering, and other advanced persistent threats.
• Utilise a variety of system penetration testing tools, techniques, and methodologies to perform in-depth assessments.
• Analyse and assess potential security risks and vulnerabilities within the organisation's infrastructure. This includes but is not limited to ICT, IoT, Operational Technology and Cloud Computing environments.
• Exploit identified vulnerabilities to determine the potential impact on the organisation's security posture.
• Document and report findings in a clear, concise, and actionable manner.
• Work closely with members of the QCS Cyber Security Unit to ensure the effectiveness of detection and response strategies.
• Provide detailed insights into potential attack vectors and methods to improve defensive measures.
• Collaborate in threat hunting exercises to identify and mitigate potential threats proactively.
• Develop and execute red team scenarios and simulations to challenge and improve the blue team's capabilities. Provide after-action reports and debriefings to highlight findings, lessons learned, and areas for improvement.
• Create detailed reports of system penetration testing activities, including methodologies used, vulnerabilities found, and recommendations for remediation.
• Maintain documentation of testing processes, tools, and findings for future reference and audits.
• Present findings and recommendations to stakeholders, including technical and non-technical audiences.
• Stay up to date with the latest system penetration testing tools, techniques, and methodologies.
• Ensure all system penetration testing activities comply with relevant legal, regulatory, and industry standards.
• Provide expert advice on secure coding practices, system hardening, and threat mitigation strategies.
• Act as a subject matter expert for system penetration testing within the organisation, offering guidance to other teams and stakeholders.
Applications to remain current for 12 months.
Further information
We are committed to building inclusive cultures in the Queensland public sector that respect and promote human rights and diversity.
Please ensure you download all attachments and follow the instructions on how to apply.
Documents
Before applying for this vacancy please ensure you read the documents below.
