Job Title: Cyber Security Manager
Position Overview
The role of a Cyber Security Manager is a crucial part of the Engineering Support Team, working under the guidance of the Deputy Chief Engineer. The position involves leading a team focused on mitigating cyber security risks across various internal products.
This includes providing support services, expert advice, and reporting on hardware and software vulnerabilities, cyber supply chain risk management, defensive cybersecurity measures, incident response, and specialized consultations.
You will ensure compliance with relevant financial, legislative, and departmental policies, as well as defence directives and standards.
Key Responsibilities
1. Manage Vulnerability Assessment Activities
o Communicate with stakeholders, prepare reports on both software and hardware components across all products.
2. Develop and Maintain Cyber Supply Chain Risk Management Plan
3. Lead SOC Development and Enhancement
o Oversee SOC analysts.
4. Plan and Execute Threat Hunting Initiatives
5. Cyber Security Operations Oversight
o Create and update Standard Operating Procedures.
6. Apply Cyber Threat Intelligence
o Analyse and apply CTI to organizational products.
7. Engage with Cyber Security Stakeholders
o Engage with cyber security stakeholders within the Defence Digital Group and the broader Defence Department.
8. Internal Cyber Security Training Programs
o Lead internal cyber security training programs.
9. Stay Current with Emerging Threats
o Stay current with emerging cyber security threats and issues, providing briefings and education to internal teams.
10. Specialized ICT Security Advice
o Offer specialized ICT security advice during product design, development, and testing phases.
11. Incident Response Planning
Requirements:
Essential Experience & Skills:
1. ICT Security Governance, Risk, and Compliance
o Experience in ICT Security Governance, Risk, and Compliance (GRC) or equivalent.
2. Open-Source Intelligence Analysis
o Skills in open-source intelligence analysis, risk assessments, and technical reporting.
3. Background in SOC-Based Cyber Incident Response
o Background in SOC-based cyber incident response, both as an analyst and manager.
4. Expertise in Threat Modelling and Management
o Expertise in threat modelling, threat hunting, and incident management.
5. Proficiency in SIEM Tuning and Optimization
o Proficiency in SIEM tuning and optimization.
6. Supply Chain Risk Assessments
o Experience conducting supply chain risk assessments and reporting.
7. Vulnerability Assessment and Management
o Skills in vulnerability assessment and management.
Desirable Qualifications & Skills:
1. Previous Role within a Security Operations Centre
o Previous role within a Security Operations Centre (SOC).
2. Mitre ATT&CK Framework Knowledge
o Knowledge of MITRE ATT&CK framework.
3. SCAP, STIG, CIS Security Standards
o Experience with SCAP, STIG, and CIS security standards.
4. Agile/Scrum Project Methodologies
o Familiarity with Agile/Scrum project methodologies.
5. DevSecOps and CI/CD Pipeline Security
o Knowledge of DevSecOps and CI/CD pipeline security.
6. Digital Forensics for Networks and Hosts
o Skills in digital forensics for networks and hosts.
7. SIEM Design and Deployment
o Experience in SIEM design and deployment.
8. Container Security Controls and Logging
o Understanding of container security controls and logging.
9. Australian Military or Defence Department Experience
o Prior experience with the Australian military or Department of Defence.
10. Collaboration with Australian Intelligence Agencies
o Collaboration with Australian intelligence agencies.
Additional Information:
This contract offers extension options, which will be discussed as needed.