Vulnerability Analyst

Posted 28 May 2024
Salary$120 - $145 per hour, Benefits: Plus Superannuation
Job type Contract
DisciplineInformation Technology

Job description

Job Position: Vulnerability Analyst (12-Month Contract)
Location: Canberra
Security Clearance: Australian Citizen with Baseline Clearance Required

DFP Recruitment is hiring for Vulnerability Analyst with one of the Federal Government client .The Australian Government is dedicated to enhancing Australia’s cyber defences, ensuring that our essential networks are secure and reliable. About the Program, The Cyber Hygiene Improvement Programs (CHIPs) is an automated discovery and reporting initiative aimed at identifying and addressing cyber hygiene issues within federal, state, territory, and local government internet-facing IT services. CHIPs plays a critical role in strengthening our cyber defences by reporting on vulnerabilities, open ports, encryption, email security configurations, and other significant issues.

In addition to routine tasks, CHIPs handles High-priority Operational Tasks (HOT CHIPs), which involve quickly analysing and responding to new vulnerabilities or critical cyber security situations.

Key Responsibilities:
  • Vulnerability Monitoring: Maintain visibility on new and significant vulnerabilities that emerge in open source channels.
  • Risk Assessment: Investigate vulnerabilities to evaluate the risks they pose to government and the broader Australian economy.
  • Collaboration: Work closely with CHIPs colleagues to assess threats and determine their impact on national security and economic stability.
  • Communication: Inform and support decisions regarding alerts and targeted communications about vulnerabilities.
Desired Skills and Experience:
  • Technical Knowledge: Broad understanding of software vulnerability mechanisms and classifications, including:
    • Remote Code Execution (RCE)
    • Local Privilege Escalation (LPE)
    • Deserialization
    • Path Traversal
    • Authentication Bypass
  • Cyber Security Expertise: Experience in either offensive (penetration testing) or defensive (SOC analysis) cyber security roles.
  • Vulnerability Analysis: Ability to assess and run proof-of-concept exploitation code and conduct open-source research on emerging vulnerabilities.
  • ICS/OT Devices: Experience in analyzing vulnerabilities in Industrial Control Systems (ICS) and Operational Technology (OT) is highly desirable.
  • Triage Skills: Experience triaging vulnerabilities against enterprise systems, particularly those facing the internet.
  • Teamwork: Proven ability to work collaboratively to deliver critical outcomes under time constraints.
Additional Requirements:
  • Australian citizenship with Baseline Clearance is mandatory.
  • Must be available to work 5 days per week (approximately 40 hours).
  • Onboarding will occur in Canberra, with some flexibility for remote work.
To Apply:

If you are ready to take on a rewarding challenge and contribute to the success of this organisation, we encourage you to click on "apply now" button with your updated CV in MS Word/ reach Madhuri directly at / 02 9200 3674.

Applicants new to DFP may be asked to provide additional information including work rights status via a survey link – if requested, we ask that you provide this information in order to expedite your application.
DFP welcomes applications from Aboriginal and Torres Strait Islander people, people with diverse cultural and linguistic backgrounds and people with disability. In addition, DFP will provide reasonable adjustments for individuals with disability throughout the recruitment process. If you identify as a person with disability and require adjustments to the application, recruitment, selection and/or assessment process, please advise via or 1300 337 000 and indicate your preferred method of communication (email, phone, text) so we can keep in touch and meet your accessibility needs.
By clicking 'apply', you give consent that DFP may use your personal information to process your job application and to contact you for future employment opportunities. For further information on how DFP process your personal information please review the DFP Information Collection and Privacy Policy via Do not submit any sensitive personal information in your resume.