Job Title: Cyber Security Specialist - Risk Management
This role involves leading and conducting risk assessments of internal systems, assessing risks from external connections, undertaking compliance activities, developing and implementing initiatives to reduce technology risk, and ensuring external stakeholders address relevant compliance standards.
Key Responsibilities:
- Lead risk assessments of internal systems and assess risks from external connections.
- Undertake compliance activities in relation to cyber security standards within the Agency and Digital Partners.
- Develop and implement initiatives to reduce technology risk, governance, and compliance to policies and regulatory compliance.
- Develop IT security standards, policy, procedures, and controls for managing risks.
- Support business operations by ensuring external stakeholders adequately address all relevant compliance standards such as PSPF, ISM, Agency Risk Management Frameworks, and incident management disciplines.
- Complete and investigate internal and external information security risk and exceptions assessments and document and report control failures and gaps to stakeholders.
Essential Criteria:
* Experience with Australian Government governance concepts with a focus on ICT, policy/standards development, documentation of frameworks, and assisting in reporting to Senior Executive.
* Strong oral and written communication skills.
* Ability to mentor and provide expertise within a team environment and engage with internal/external stakeholders confidently.
* Australian Citizenship and minimum NV1 AGSVA Security Clearance.