A 36-year-old man from South London has successfully obtained a rare visa to Australia after demonstrating his skills as an ethical hacker. Jacob Riggs, from Bexley, cracked a flaw in the Australian Government’s system, proving his expertise and securing the 858 National Innovation visa, a pathway for highly skilled professionals.
The 858 visa, previously known as the Global Talent visa, is awarded to fewer than 1 percent of applicants, requiring evidence of internationally recognized achievements. Recipients typically include Nobel Prize winners and Olympic medalists. Riggs is set to relocate to Sydney to work in cyber defense after being granted full Australian residency.
Riggs, who serves as the global director of information security for a large Software as a Service (SaaS) provider, undertook the hacking incident in July 2023 while at home. He shared that he felt “not particularly” nervous during the process, treating it like a routine security assessment. “It took roughly one hour and fifty minutes to identify the vulnerability,” he explained, noting that he was testing various entry points before discovering a weakness the organization was unaware of.
During the government’s review of his visa application, Riggs responsibly disclosed a critical vulnerability in a live system operated by the Department of Foreign Affairs and Trade (DFAT). “If the 858 asks for anything, it’s evidence that your efforts to master yourself have meant something,” Riggs stated. He emphasized that his work aimed to protect the nation while assessing his application.
DFAT later acknowledged his contribution, adding his name to their Vulnerability Disclosure Program honour roll. This recognition comes at a time when Australia faces rising cyber threats, with government agencies and private organizations increasingly targeted by ransomware and state-sponsored hacking.
Riggs’ proactive approach reflects modern cybersecurity practices that prioritize identifying vulnerabilities before they can be exploited. His success illustrates the challenges of proving expertise in a field where many achievements go unnoticed. “There is no trophy for preventing a breach that never happens,” he remarked, noting that his discovery provided tangible evidence of his skills, which helped secure the rare visa.
The decision grants Riggs full residency rights, allowing him to pursue his research, leadership, and public-interest cybersecurity work in Sydney. He plans to move within the next 12 months but acknowledges the complexities of relocating his life. “I also have a cat and he still needs convincing,” he added with a touch of humor.
Riggs’ journey into cybersecurity began with a lifelong interest in computers, evolving into a successful career marked by high-impact vulnerability discoveries across various sectors, including government, academia, and major technology companies. His responsible disclosure practices and technical leadership have earned him recognition in the field.
Experts highlight that Riggs’ achievement signals a broader shift in how nations assess elite cyber talent. For him, this journey validates years of dedicated research and hands-on experience, providing an opportunity to strengthen Australia’s defenses against digital threats. “In cybersecurity, mastery is invisible unless you can show its impact,” he concluded.
The Australian Government has not yet responded to requests for comment regarding Riggs’ case.
