Great opportunity for a Penetration Testing Stream Lead to join a leading financial services company.
The role exists to provide technology-based vulnerability detection services incorporating scanning and penetration testing across key assets.
We are looking for an experienced Cyber Security professional to manage a team of 5/6 Penetration Testers. Ideally you will have a background in Penetration Testing but this is not essential.
What you’ll be doing…
Define scope of penetration testing objectives and define and drive plans to deliver on that scope, ensuring alignment of plans with the objectives of the Enterprise Security performance unit;
Provide direction to NAB’s penetration testing team to ensure outcomes of testing activity align with defined scope and objectives of the Enterprise Security performance unit;
Provide direction and consultation to NAB’s asset teams to assist in the understanding and remediation of security test findings, influencing security change at a PU level; coordinate execution of testing plans with asset owners and stakeholders;
Work autonomously within Security but evangelise security uplift across technology teams;
Build networks and strong working relationships with colleagues to GM level down, and be seen as a trusted provider of penetration testing services and advice;
Use excellent communication skills to articulate security testing requirements, outcomes, and recommendations in a business context.
Identify team functions/processes/capabilities which can be improved / automated and drive this change
Identify desirable skillsets for the team to acquire and find opportunities for the team to grow
What you will bring...
Experience defining and delivering complex projects in an enterprise environment
A developed awareness of best practice in security and a drive to self-educate in the field
Experience working as a consultant, providing guidance and service in an environment of rapid change
Proven relationship management experience with suppliers of technology products and services
Technical background in at least one core technology or in application development
Hands-on experience with security testing
Desirable: SSCP or CISSP
Desirable: formal delivery certifications such as CSM, PMP, or Prince 2
Xpand's consultants are specialists in the Digital IT area and they know the HK market very well. Other than a lot of other agencies, Xpand really cares about both their clients and candidates, it is not just a matter of sending CVs and hitting the numbers. The consultants know exactly what we are looking for, from both technical and personality perspective. They have made a significant contribution in the growth of our HK office
Amin TSE, Talent Acquisition Specialist, PALO IT Hong Kong
We had selected Xpand among a list of well-known digital and tech recruitment companies and we had been very lucky to give them that exclusivity. We needed to hire top talents in digital and new tech across Asia. They had match their target in terms of quality and number of candidates despite the lack of such talents in Asia. They had understood our way of working and our mindset. This is a pleasure to work with them and I definitely recommend Xpand. I am very thankful to the team
C-Level International Insurance Company
Leading a fast-growing but time-poor business, I have found Philip and the Xpand team informative, supportive and fully engaged in the most vital part of our future; our people. Philip is extremely knowledgeable and has provided valuable insights throughout the lifecycle of each of our searches. 6 months ago, we set out to find a recruiter we could grow with for the long-term but we did better than that. We found a partner who is truly invested in us and our success
Darren Palfrey, COO at Gravity Supply Chain
Working with Xpand has been a great experience since we engaged them more than a year ago. They pay close attention to your recruitment requirements and don't stop looking for the right candidate until we finally say 'yes' - they don't take 'no' as an answer! Their extensive knowledge of the local IT market is definitely a plus and one of their key strengths which will make us keep on working with Xpand.
Romain Rohee, Head of Professional Services APAC at ITRS