CyberCX logo

Penetration Tester - Sydney

CyberCX Sydney, New South Wales, Australia

onsitefull-time
Posted Apr 13, 2026Apply by May 13, 2026

**Role & seniority: ** Junior Penetration Tester (min. 1 year penetration testing experience; 1–3 years preferred)

**Location & work type: ** Sydney, Australia; join a large team (work model not explicitly stated)

**Stack/tools: **

  • Web application penetration testing

  • Network/system/infrastructure penetration testing

  • Cloud configuration reviews (desirable)

  • Mentions STA services (specific tools not listed)

  • Top 3 responsibilities:

    • Deliver customer application, network, systems, and infrastructure penetration tests (with adequate supervision)

    • Produce high-quality penetration test reports with findings, recommendations, and solutions

    • Engage stakeholders/customers: present results, discuss next steps, and build long-term customer relationships

  • Must-have skills:

    • At least ~50+ professional pentests in the last year

    • Strong web application pentesting experience

    • Capability in client expectations management, time management, technical delivery, and report writing

    • Stakeholder engagement and communication skills

    • Australian Citizen or Permanent Resident

  • Nice-to-haves:

    • Some experience with cloud configuration reviews

    • OSCP or other penetration testing certifications (preferred, not required)

    • Demonstrated ability to expand into additional security testing areas

Full Description

Looking for a Junior Penetration Tester with Minimum One Years' Penetration Testing experience to join a large team in Sydney.

About You

Completed minimum 50+ pentests in the last year professionally - Australian Citizen or Permanent Resident Experienced with Web Application PenTests and keen to learn other areas Some experience on Cloud Configuration Reviews - desirable

Lots of opportunities for career progression, training and exposure to different enterprise environments.

Key Roles & Responsibilities

Deliver application, network, systems, and infrastructure penetration tests for customers. Able to perform the top five and emerging STA services offered by the Practice to a high standard with adequate supervision Prepare high quality reports detailing security issues, making recommendations, and identifying solutions, contribute to presentations and discussions with customers around testing performed, key results, recommendations, and the next steps Build and promote strong, long-lasting relationships with a diverse range of customers, and identify and explore opportunities within existing and new customers

Preferred Qualifications, Experience & Skills

1-3 years as a security testing practitioner / cyber practitioner in which you have developed capability in managing client expectations, time management, technical delivery and report writing Penetration testing certifications such as OSCP preferred but not essential Effective stakeholder engagement and communication skills

If you have a few years Penetration Testing experience and ready to level up, please submit your resume.

Fees will not be paid for unsolicited resumes that are submitted directly to hiring managers and not through our approved process.

Penetration TestingWeb Application PenTestsCloud Configuration ReviewsSecurity TestingTechnical DeliveryReport WritingStakeholder EngagementCommunication Skillsmulti-location

Cookies & analytics consent

We serve candidates globally, so we only activate Google Tag Manager and other analytics after you opt in. This keeps us aligned with GDPR/UK DPA, ePrivacy, LGPD, and similar rules. Essential features still run without analytics cookies.

Read how we use data in our Privacy Policy and Terms of Service.