Job Description
The Role :
Cyber Risk team review and re-evaluate existing Security Approval to Operate and undertake Security Risk Assessment as well as priorities and triage new work items manage enterprise and group risks. Perform Security Impact Assessment to determine further security requirements integrating the overarching Department Risk Management Framework to perform security risk assessment and develop mitigation strategies ensuring risks remain within tolerance level. We issue a Security Approval to Operate when systems have met security requirements prior to moving into production.
Skills and Experience Required :
- Strong understanding of information principles risk management frameworks and standards (e.g. ISO 27001 ISM NIST PSPF)
- Experience in conducting Cyber Security Risk Assessment (SRA) and Security Impact Assessment (SIA)
- Knowledge of threat modelling risk treatment planning and control effectiveness evaluation
- Familiarity with government / enterprise authorisation frameworks and security accreditation process
- Ability to interpret and apply compliance requirements in multi-vendor and cloud environments
- Experience preparing risk and compliance documentation for executive and governance bodies
- Ability to identify emerging risks within new technologies such as Artificial Intelligence
- Ability to translate technical risk language to non-technical audience
- Ability to identify assess and priorities security risks
- Knowledge of cloud platform (e.g. AWS AZURE IaaS) and associated security risks
- Understanding of security architecture and technical control relevant to risk assessments
- Skilled in preparing explicit and concise reports briefings and executive level presentation
- Capacity to manage urgent and competing priorities under tight deadlines
Attention to detail with a risk-focused mindset
Location and Contract Term
This role is based in Canberra. 12 month contract with 1 x 12-month contract extension option pending budget and delegate approval.
Security Requirements
Applicants must be Australian Citizens and hold a baseline Security Clearance
How to Apply
Applications close 20 November.
Please upload your resume to apply. Candidates will need to be willing to undergo pre-employment screening checks which may include ID and work rights security clearance verification and any other client requested checks.
Please note you may need to complete selection criteria to complete this application process. We will be in touch with instructions for suitably skilled candidates.
Call Kellyor any further information.
Key Skills
- ISO 27001
- Microsoft Access
- Risk Management
- Financial Services
- PCI
- Risk Analysis
- Analysis Skills
- COBIT
- NIST Standards
- SOX
- Information Security
- Data Analysis Skills
Employment Type
Full‑Time
Experience
Years
Vacancy
1
#J-18808-Ljbffr