Graduate Penetration Tester

At Thales, we know technology has the ability to make our world more secure, sustainable, and inclusive – and that it’s all driven by human intelligence.

Because it takes human intelligence to build and power the systems and solutions that people depend on every day. So we stay curious and make space for diverse points of view. We share what we know and we challenge what’s possible.

From manufacturing and engineering to cybersecurity and space, we’re driving progress in some of the world’s most important industries – and working together to build a future we can all trust.

Thales Cyber Services Australia and NZ are a full-service cybersecurity solutions provider. We partner with clients across Australia, New Zealand and the globe in the protection of their digital assets and provide a full suite of cybersecurity services.

Partnering with over 1,400 mid-sized to enterprise, government, and critical infrastructure clients, our mission is to be the sovereign cybersecurity provider of choice for the protection of Australia and New Zealand’s digital assets. Delivering comprehensive, tailored solutions to prevent, detect and mitigate potential cyber-attacks. We have deep expertise in security advisory (GRC) and consulting, technical assurance and testing, cloud services, 24x7 managed services and monitoring, incident response and forensics, and converged/physical security.

• Flexible working arrangement with a healthy mix of working from home and our offices in Sydney, Melbourne or Canberra (other locations and cities can also be considered)
• Opportunities to work with some of the best cybersecurity professionals in the region, and to grow and develop your career
• Provision of professional and technical training and support with securing industry recognised certifications
  
  
  

About The Role

You’ll join a hands-on penetration testing team working with a broad range of clients, tackling real‑world security problems and rapidly building your technical depth.

• Work alongside experienced penetration testers to deliver security testing across web applications, APIs and infrastructure (internal and external)
• Document your test steps, findings and evidence clearly, contributing to client-facing reports and remediation advice.
• Support senior consultants during client engagements, including preparing materials and taking structured notes in meetings and workshops.
• Contribute to improving tools, scripts and internal lab environments as your skills grow.
• Help improve tools and processes, while staying up to date with emerging vulnerabilities, exploits and attacker techniques.
  
  
  

About You

• Degree in Cybersecurity, IT, Computer Science, Engineering or related discipline (graduated by end of 2026).
• Comfortable working in Linux command line and Windows environments, with basic scripting or programming skills (for example Python, Bash or PowerShell).
• Awareness of common web application vulnerabilities (such as the OWASP Top 10), gained through coursework, labs, CTFs, personal projects or similar.
• Skilled communicator who works effectively as part of a delivery team.
• Organised, efficient and adaptable, capable of managing multiple tasks and deadlines while maintaining attention to detail.
  
  
  

AUSTRALIAN DEFENCE ROLES & SECURITY

A Defence security NV1 clearance is required for this role. Applicants must be Australian citizens and eligible to obtain and maintain NV1 clearance.

Additional information with regards to clearances is available from the Australian Government Security Vetting Agency website http://www.defence.gov.au/AGSVA/. In some cases, individuals who hold a current clearance from a foreign government may be eligible to have this clearance recognised by the Australian Government and be eligible for this role. The Australian Defence Trade Controls Act (DTCA) is applicable and as such, your nationality may be a factor in determining your suitability for this role.

WE ENCOURAGE YOU TO APPLY

We recognise the recruitment process is a two-way street. Therefore, we aim to provide you with all the information you need to make an informed decision that Thales is the right place to launch your career! After you have applied, you will receive an email acknowledging your application. We’ll then provide a personalised experience for suitable applicants as we progress the selection and assessment process.

It’s easy to dismiss the perfect opportunity if you don’t see yourself as the perfect fit. If this role feels right – no matter your background or personal circumstances – please introduce yourself or join our community. We’re committed to supporting a diverse workplace, and that starts here.

We’re proud to be endorsed by WORK180 as an Employer for All Women, but we know there’s always more we can do. We’ll continue to foster industry partnerships, employee resource groups (ERGs) and development opportunities to make Thales a genuinely equitable employer, for everyone.

Read more about our WORK180 endorsement.