Fortifying Systems That Power Millions
Endeavour Energy is one of New South Wales’ largest electricity network providers, supplying power to more than 2.6 million people across homes and businesses. As a designated Critical Infrastructure organisation, maintaining the integrity and resilience of its systems is not just a matter of operational efficiency, it’s essential to public safety and national security.
To help ensure that its infrastructure is protected against emerging threats, Endeavour Energy partners with Aurian Security to conduct thorough annual penetration tests across its digital environment.
Why Endeavour Trusts Aurian
In selecting a partner to test and challenge the resilience of their digital infrastructure, Endeavour Energy was looking for more than a vendor - they needed a security team that understood the stakes of operating in a critical infrastructure environment.
Aurian Security offered a blend of technical rigour, clear communication, and domain-specific experience that aligned with their risk posture and operational goals.
- All testing is conducted in-house by OSCP/OSCE-certified consultants
- Zero outsourcing - every engagement is confidential and under control
- Our reports balance technical depth with executive clarity
- Flexible scheduling and minimal operational disruption
- A true partnership approach - we’re here for the long term
The Challenge
As a critical infrastructure operator, Endeavour Energy faces a heightened threat landscape. Attackers ranging from state-sponsored actors to organised cybercriminals are constantly probing for weaknesses in essential systems. The organisation is subject to rigorous regulatory oversight, and must demonstrate proactive, ongoing efforts to identify and mitigate cyber risks.
In addition to external compliance requirements, internal stakeholders demand clear visibility into where security gaps may exist (and what must be done to address them) without introducing unnecessary operational risk.
Our Solution
Aurian Security delivers a bespoke, annually recurring penetration testing program tailored to Endeavour Energy’s complex environment. Our assessments cover both internal and external network boundaries, including critical operational systems, administrative interfaces, and supporting infrastructure.
We apply a methodical, risk-based approach:
• Discovery & Planning: We collaborate with key stakeholders to understand the environment, business priorities, and testing constraints.
• Threat-Driven Testing: Using a combination of automated tooling and manual exploitation techniques, our consultants identify and validate vulnerabilities that pose genuine risk.
• Operational Context: We focus on findings that have real-world impact, such as access to sensitive data, privilege escalation, lateral movement, and compromise of critical systems.
• Reporting & Support: All findings are delivered with clear severity ratings, business risk narratives, and practical remediation guidance. We also provide debrief sessions to technical teams and executive leadership.
Outcomes
Aurian Security’s annual testing has become a cornerstone of Endeavour Energy’s security assurance program. Our insights have led to the early identification and resolution of critical vulnerabilities, informed security investment decisions, and helped the organisation continually improve its resilience against real-world attacks.
The collaboration has also enabled Endeavour Energy to meet regulatory expectations with confidence, supporting their obligations under SOCI and internal governance frameworks.
Looking Ahead
As cyber threats continue to evolve, Aurian Security remains a trusted partner in helping Endeavour Energy maintain its high standards of protection. With future initiatives such as red team exercises and managed vulnerability scanning on the horizon, we continue to support their mission to keep the lights on – securely.