Offensive Security Engineer (Cybersecurity)

TL;DR

Offensive Security Engineer (Cybersecurity): Delivering high‑impact offensive security testing across applications, infrastructure, and cloud environments with an accent on penetration testing and vulnerability assessments. Focus on executing a prioritized testing pipeline, supporting shift-left security in CI/CD, and collaborating with engineering teams to remediate vulnerabilities.

Location: Hybrid Sydney (AU)

Company

hirify.global is the world’s leading specialist in food & agribusiness banking.

What you will do

• Execute offensive security testing across applications, infrastructure, and cloud platforms, including on‑prem and Azure environments.
• Perform hands‑on penetration testing and vulnerability assessments to validate exploitability and real business impact.
• Partner with DevSecOps teams to support shift‑left security by tuning and validating automated security testing and CI/CD controls.
• Triage findings from code scanning and provide actionable remediation guidance to engineering squads.
• Coordinate offensive security activity and external penetration testing schedules across the hirify.global ANZ region.
• Produce clear, high‑impact security reports tailored for both technical and non‑technical stakeholders.

Requirements

• Strong hands‑on experience in penetration testing and offensive security assessments within complex enterprise environments.
• Proven ability to assess and exploit vulnerabilities in web applications, APIs, network/server infrastructure (Windows, Linux, AD), and cloud platforms (Azure preferred, AWS acceptable).
• Practical understanding of DevOps/CI/CD pipelines, specifically Azure DevOps, with experience embedding security testing.
• Familiarity with recognized frameworks such as OWASP, PTES, OSSTMM, NIST, and MITRE ATT&CK.
• Working knowledge of SAST and DAST tools.
• Strong written and verbal communication skills for collaborating with SOC, engineering, and architecture teams.

Culture & Benefits

• Wellbeing leave providing 2 extra days for better work-life balance.
• Education Assistance Program to support professional development.
• Paid parental leave of up to 14 weeks.
• Incentives for additional annual leave, including the option to purchase extra weeks.
• Employer-funded Death, TPD, and Income Protection Insurance for eligible permanent employees.
• Rabo Workplace Giving program that matches employee donations to social partners.

Hiring process

• Application review of resumes and covering letters.
• One or more online interviews, potentially including an assignment or assessment.
• Final offer subject to a mandatory legal screening.