AAT Managed Service Penetration Testing
Job Description:
Australian Citizens residing in Australia with Baseline Clearance only respond.
The AAT is embarking of a program of works to replace its aging network and network security service architecture, more commonly known in Federal Government as a Secure Internet Gateway (SIG). We are working with an IRAP assessed Managed Service Provider (MSP) to assist us design, deploy, test, and migrate network services from our old architecture to a next generation architecture leveraging the technology stack commonly referred to as Secure Access Service Edge (SASE). Furthermore, as part of this holistic security solution uplift program, the AAT has also implemented a Security Incident and Event Management (SIEM) system which is co-managed with a separate MSP
The AAT is seeking qualified suppliers (CREST certified) to conduct Penetration Testing. The objective of the Penetration Testing is to provide assurance to the AAT on the performance of its cyber security controls by testing selected areas:
- The micro secure internet gateways located at each AAT branch office
- The remote worker components; Windows 10 endpoint and Fabric client (including VPN)
- The AWS and Azure secure cloud internet & email gateway components
- The AATs Security Event and Incident Management (SIEM) platform