Together we shape thriving communities, public spaces, places and economies.
* Ongoing full-time opportunity
* Office location – Parramatta preferred, all other NSW locations considered upon application
* Salary relative to experience and ranges from $129,464 to $142,665 + super
What's in it for me?
Join our team for a fantastic culture with dynamic collaboration and genuine long-term career support. We offer flexibility in work arrangements, diverse and fulfilling assignments, and prioritize work/life balance and wellbeing with initiatives like flex leave and access to support programs. Additionally, we are committed to fostering a diverse and inclusive workplace where everyone feels welcome, respected, and empowered to succeed.
Step into a pivotal role where your expertise in security risk management will shape the future of digital governance. As a Senior Security Risk Analyst within the Corporate Services division of the Digital Information Office, you will lead the charge in identifying, assessing, and mitigating information security risks across the organisation. Your work will ensure the secure use, processing, transmission, and storage of critical data, while driving compliance with established frameworks and policies. As a senior specialist, you won't just monitor risks, you will shape how we engage with the market, ensuring our third-party ecosystem is secure, compliant, and resilient.
Working closely with technology leaders, security architects, and system owners, you will spearhead third-party security risk management, facilitate critical audits, and develop actionable risk treatment plans and reporting, providing a unique opportunity to influence strategic decisions and contribute to the development of robust security metrics that support a resilient digital environment.
This is a role for a strategic thinker who excels at navigating complex challenges and presenting high-level insights to senior executive stakeholders. Your ability to effectively prioritise competing demands while maintaining a deep, up-to-date knowledge of security frameworks will be the key to your success.
For more information read the full Role Description: Senior Security Risk Analyst
What you will bring to the role:
* A proven track record in managing information security risk, audit, and compliance activities across diverse supply chains and complex domains.
* Expertise in planning and prioritising initiatives, with the flexibility to adapt to shifting priorities and emerging risks.
* Strong communication and negotiation skills, with the ability to influence key stakeholders and translate complex security findings into clear, business-focused insights.
* The ability to take full ownership of the risk lifecycle, from initial vendor due diligence to ongoing monitoring, delivering expert reports and treatment plans with precision and minimal supervision.
* Ability to go beyond "self-assessment" questionnaires by performing deep-dive technical reviews.
* A proactive mindset that thrives in fast-paced environments, with the flexibility to pivot between emerging threats and long-term strategic initiatives
* A deep commitment to staying at the forefront of security frameworks and industry trends to ensure our controls remain world-class.
* A dedication to continuous learning, self-reflection, and maintaining the highest standards of professional ethics.
Key knowledge and experience
* Knowledge of the NSW Government compliance requirements and other security frameworks and standards such as Australian Signal Directorate (ASD), the Australian Government Protective Security Policy Framework, and ISO/IEC 27001.
* Knowledge of information security risk management, and IT controls frameworks and methodologies (e.g., ASD Essential 8 strategies, ISO/IEC 27005, NIST, SOC2, or the NIST Supply Chain Risk Management)).
* Experience with analysing multiple source data to improve controls.
* Experience leveraging Governance, Risk, and Compliance (GRC) platforms (e.g., ServiceNow, Archer, UpGuard, or Protecht) to automate vendor monitoring and reporting.
* Experience with data visualisation tools (e.g., PowerBI, Tableau).
Essential requirements
Tertiary qualifications in computer science, information and technology or related technical field and/or relevant experience including risk management and compliance.
About us
The Department of Planning, Housing and Infrastructure (DPHI) improves the liveability and prosperity of NSW. To achieve this, we: create vibrant, productive spaces and precincts; manage lands, assets and property effectively and deliver affordable and diverse housing. We strive to be a high-performing, world-class public service organisation that celebrates and reflects the full diversity of the community we serve and builds the cultural capability of our department to improve outcomes with and for Aboriginal people, communities and entities.
We are an inclusive and accessible workplace, where your individual contributions are valued, and where everyone is encouraged to feel a sense of connection and belonging. DPHI supports various employee affinity groups, practices flexible working, offers job share and workplace adjustments.
Join us
If excited by the information above, we look forward to receiving your application, including a copy of your resume and cover letter expressing your interest and suitability for the role.
Applications close Sunday, 01 February :59PM
Should you require further information about the role please contact Ivana Stojnic via
To enhance your account security, PageUp is introducing two-factor authentication (2FA). You can follow the step by step guide here. If you experience any issues please reach out on HR Support, option 2, DPHI People Advisory, option 1.
A talent pool may be created for ongoing and temporary opportunities of the same role or role type that may become available over the next 18 months.
Please note to be eligible to apply for this position you must be an Australian or New Zealand citizen or permanent resident, or hold a valid Australian working Visa for the duration of the appointment.
We encourage and support applications from people with disability. Please reach out to us to discuss any accommodations or adjustments that may be needed during the recruitment process, ensuring that you have every opportunity to showcase your talent, skills, and potential. Contact the Talent Team via or - HR Support, option 2, DPHI People Advisory, option 1 and reference 'Request an Adjustment - Job Title and Reference Number'.
Check out our Aboriginal applicants guide to assist with applying for the role or contact our Aboriginal Career pathways team for a yarn.
.
Role Description