This is a remote position.
Estimated Start: Monday, 19 January **** Initial Term: 12 months Experience Level: Lead – EL1 equivalent Location: ACT (Hybrid arrangements available) Security Clearance: Must be able to obtain Baseline Role Overview The Department of Industry, Science and Resources (DISR) is seeking an experienced Cyber Security Compliance Specialist to lead risk and compliance activities within its Cyber Governance team.
This role focuses on ensuring security accreditation requirements are met for new and upgraded systems under the department's Authority to Operate Framework (AtOF) .
You will work closely with system owners, business stakeholders, and technical teams to identify cyber security risks, recommend remediation strategies, and deliver high-quality security documentation.
Key Responsibilities Lead and produce security accreditation documentation, including: Statement of Applicability (SOA) System Risk Management Plan (SRMP) System Security Plan (SSP) Certification Reports Manage multiple AtOF assessments concurrently, ensuring timely completion.
Provide expert security advice aligned with ISM, PSPF, and IRAP frameworks.
Communicate security concepts effectively to technical and non-technical stakeholders.
Collaborate with Cyber Security Manager and IT Security Advisor to resolve compliance issues and address vulnerabilities.
Facilitate discussions and negotiate outcomes with stakeholders.
Complete security assessments in the department's IT service management risk system.
Requirements Required Skills Experience Minimum 5 years as a Cyber Security Compliance Specialist, with proven experience in governance, risk, and compliance.
Strong background in large, complex ICT environments, particularly Microsoft technologies.
Extensive knowledge of Australian Government security policies and frameworks (ISM, PSPF, IRAP).
Ability to manage multiple assessments simultaneously with exceptional attention to detail.
Excellent communication and stakeholder engagement skills.