A man from South London, known for his skills in cybersecurity, has successfully obtained a rare visa to Australia after uncovering a serious flaw in a government system. Jacob Riggs, 36, from Bexley, demonstrated his technical prowess by ethically hacking the Australian Government’s website, leading to the approval of his application for the highly selective 858 National Innovation visa.
The 858 visa, previously known as the Global Talent visa, is granted to fewer than 1 percent of applicants. It requires proof of internationally recognised achievements, a benchmark typically reserved for elite professionals such as Nobel Prize winners and Olympic medalists. Riggs, who serves as the global director of information security for a major Software as a Service (SaaS) provider, was awarded full residency rights in Australia, allowing him to relocate to Sydney to focus on cyber defence.
During his hacking attempt in July 2023, Riggs did not experience much anxiety. “I approached it as a routine security assessment and simply applied the same methodology I use professionally,” he stated. His assessment lasted approximately one hour and fifty minutes, during which he tested various entry points before identifying a vulnerability that the government was previously unaware of.
In the process of applying for his visa, Riggs responsibly disclosed the critical vulnerability he found in a live system managed by the Department of Foreign Affairs and Trade (DFAT). “If the 858 asks for anything, it’s evidence that your efforts to master yourself have meant something,” he explained. His discovery not only showcased his technical skills but also affirmed his commitment to protecting Australia’s digital landscape.
DFAT later recognized Riggs’ contributions by adding his name to the department’s Vulnerability Disclosure Program honour roll. This recognition comes at a time when Australia faces increasing cyber threats, with government agencies and private organizations grappling to safeguard sensitive information. Ransomware attacks and state-sponsored hacking have underscored the urgent need for robust cybersecurity measures.
Riggs’ approach to cybersecurity exemplifies a modern defence strategy that emphasises proactive vulnerability identification, rewarding researchers who responsibly disclose their findings. Proving exceptional ability in this field can be challenging, as many achievements remain unseen and uncelebrated. Riggs’ tangible discovery provided concrete evidence of his expertise, significantly aiding his visa application.
With the approval of his visa, Riggs now has the opportunity to continue his research and leadership in cybersecurity full-time in Sydney. “A specific date isn’t set yet, but the move to Sydney is planned within the next 12 months,” he said. He acknowledged the complexities involved in relocating, adding humorously, “I also have a cat and he still needs convincing.”
His journey into cybersecurity began at a young age, developing from a simple interest in computers into a successful career. Riggs has gained recognition for his high-impact vulnerability discoveries across various sectors, including government agencies and major tech firms around the world. This achievement not only validates his years of dedication to the field but also positions him to contribute significantly to Australia’s cybersecurity landscape.
Experts note that Riggs’ case reflects a broader shift in how nations evaluate elite cyber talent. His successful navigation of the application process emphasizes the importance of demonstrating impact in a field where accomplishments are often invisible. “In cybersecurity, mastery is invisible unless you can show its impact,” Riggs stated, underscoring the vital role of visibility in validating expertise.
The Australian Government has not yet provided a comment regarding this case. As Riggs prepares for his new life in Australia, his story serves as a compelling example of how a blend of skill, opportunity, and innovation can open doors to new possibilities.
