A 36-year-old man from South London has successfully secured a rare Australian visa after demonstrating his skills as an ethical hacker. Jacob Riggs, from Bexley, uncovered a significant vulnerability in a live government system, which he leveraged to prove his exceptional expertise. This achievement earned him the 858 National Innovation visa, a highly selective pathway previously known as the Global Talent visa, awarded to fewer than 1 percent of applicants.
The 858 visa is primarily designated for individuals with internationally recognized achievements, such as Nobel Prize winners and Olympic medalists. Riggs, currently the global director of information security for a large Software as a Service (SaaS) provider, is now preparing to relocate to Sydney to pursue a role in cyber defense.
Riggs conducted his hacking assessment in July 2023 while at home. He described his approach as routine, stating, “While I was aware of the significance for my visa application, I approached it as a routine security assessment and simply applied the same methodology I use professionally.” He spent approximately one hour and fifty minutes identifying the vulnerability by testing multiple entry points before revealing a weakness that the Australian Government was unaware of.
During the review of his visa application, Riggs responsibly disclosed the critical vulnerability he discovered in a system operated by the Department of Foreign Affairs and Trade (DFAT). He emphasized the importance of demonstrating his mastery in a field where achievements are often invisible. “If the 858 asks for anything, it’s evidence that your efforts to master yourself have meant something,” Riggs noted.
His discovery not only provided evidence of his technical acumen but also contributed to the protection of Australia’s digital infrastructure. Following his disclosure, DFAT formally acknowledged Riggs’s work, adding his name to the department’s Vulnerability Disclosure Program honour roll.
The context for Riggs’s achievement comes amid escalating cyber threats across Australia, with government agencies and private organizations increasingly targeted by cybercriminals. Ransomware attacks and large-scale data breaches have underscored the urgent need for robust cybersecurity measures. Riggs’s proactive approach aligns with modern cyber defense strategies, which focus on identifying vulnerabilities before they can be exploited.
Riggs faced the challenge of demonstrating his world-class abilities in a field where many contributions go unnoticed. “There is no trophy for preventing a breach that never happens,” he explained. His tangible discovery provided the necessary proof of his expertise, essential for securing the rare visa.
With full residency rights granted, Riggs plans to continue his research and public-interest work in cybersecurity on a full-time basis in Sydney. He stated, “A specific date isn’t set yet, but the move to Sydney is planned within the next 12 months.” Riggs also humorously noted the need to convince his cat about the move.
His interest in computers began at a young age, evolving into a successful career in cybersecurity. Riggs has made significant contributions to vulnerability discoveries across various sectors, earning recognition for his responsible disclosure practices and technical leadership. His journey highlights a broader shift in how nations assess elite cyber talent, validating years of self-directed study and hands-on experience.
In Riggs’s words, “In cybersecurity, mastery is invisible unless you can show its impact.” The Australian Government has not yet responded to requests for comment regarding Riggs’s case.
