Talent Street is looking for **Cyber Security Specialist** to join a large Government agency.
The Cyber Security Specialist will be a member of the Cyber Security Design team where they will receive support and guidance regarding relevant government standards and guidelines. The Cyber Security Specialist will be delivering services, on behalf of Cyber Security, for ICT projects. The Cyber Security Specialist may be assigned to work on a range of different projects over the duration of the engagement.
**Key accountabilities and skills set**
The Cyber Security Specialist will be working as a SME providing security design and build services that includes:
- Security requirements analysis, security architecture and security solution design in accordance with agency, state and federal standards, policies, procedures and legislation.
- Testing and troubleshooting solution implementation.
- Transition services including training and knowledge transfer.
**Highly Desirable**
- Technical design expertise across a range of information security architecture streams.
Experience with security infrastructure and services, such as:
- Endpoint Detection and Response (EDR) technology
- Cloud Access Security Brokers (CASB)
- Cloud-based solutions and services, such as Amazon Web Services (AWS) and Microsoft Azure
- Solutions for Gateways, Containers, PaaS, API
- Secure Access Service Edge (SASE).
Experience with implementation, testing and troubleshooting network service issues, such as:
- Traditional and software defined networking
- Enterprise Firewalls and Load Balancers
- Public Key Infrastructure (PKI)
- Domain Name System (DNS)
- Multifactor Authentication and RADIUS
- Identity & Access Management / Federated Services / AD
- VPN Solutions, Remote Access Solutions
- Logging, Auditing, Monitoring and Alerting
- Microsegmentation technologies.
Relevant professional certifications, such as:
- IT security protection / audit eg CISSP, CISA;
- Security architecture eg TOGAF, SABSA;
- Cloud vendor architecture eg AWS, Azure.
**Desirable**
- Tertiary qualification in IT or related discipline.
Experience with:
- Information security management frameworks, standards, principles and process, eg ISO 27001, NIST, ASD Information Security Manual, OWASP, PCI, Qld Government Enterprise Architecture & Security Standard IS18
- Cyber Threat Intelligence (CTI) capabilities
- Data Loss Prevention (DLP) services
- Designing SIEM solutions (ie Splunk ES)
- Compliance as Code tools and strategy
- Source code security tools, eg Snyk, SonarQube
- Delivering security aspects of large and/or complex ICT projects.
**Deliverables**
- Lead, plan, and proactively deliver security aspects of projects, including detailed security designs, configuration documentation, development, testing and deployment of security-related technologies.
- Provide expert strategic, tactical and operational advice to Cyber Security Design and project teams and to forums such as FDD's Technical Design Authority, which ensures the confidentiality, integrity, availability, accountability and compliance of all information assets within information security management frameworks, standards, principles and processes.