Cyber Security Architect Position
Job Summary
We are seeking an experienced Cyber Security Architect to provide expert security architecture and advisory support. You will work with various teams to guide secure design and implementation of solutions, integrate security controls, and embed cyber security practices into day-to-day processes.
As a Cyber Security Architect, you will be responsible for providing general security guidance across the cyber security architecture and assurance domains. This includes contributing to developing security business requirements aligned with CSIRO security objectives, performing cyber security architecture activities to ensure business security requirements are integrated into IMT initiatives and projects, collaborating with solution architects, project team members and other stakeholders to ensure the delivery of secure outcomes, participating in the review and assessment of planned solution security controls to assess their effectiveness and completeness, and contributing to security risk assessments to evaluate solution security posture and identify key risks with mitigation recommendations.
Responsibilities
* Provide strategic security advice to ensure the effective management of information assets.
* Develop and maintain comprehensive security architectures and designs that align with CSIRO's security policies and standards.
* Conduct security risk assessments and implement appropriate controls to mitigate identified risks.
* Liaise with internal stakeholders to ensure the integration of security considerations into IT projects and initiatives.
* Stay up-to-date with emerging security threats and technologies, and apply this knowledge to inform CSIRO's security strategy.
Requirements
To be successful in this role, you will need to possess:
* A diploma or degree in Information Technology (IT) or related field, or equivalent relevant work experience.
* Demonstrated experience as a Cyber Security Architect with successful ICT project delivery.
* Familiarity with security frameworks and standards (ISM, Essential Eight, NIST CSF).
* Experience designing and implementing security solutions for both on-premises and cloud environments.
* Experience in developing security requirements and conducting threat modelling, security risk assessments, and risk analyses.
* Ability to guide architecture documentation and leverage cyber security technologies; ability to multi-task and manage priorities.
* Desirable: experience supporting multiple complex projects; PSPF; ACSC guidance; NIST SP; CIS benchmarks; cloud/on-premises shared responsibility models; knowledge of relevant Australian legislation; security industry certifications (ISACA, ISC2, SANS, PECB, SABSA, The Open Group, etc.).
Eligibility
This is a security-assessed position. Applicants must be Australian citizens, with the ability to obtain a Negative Vetting 1 Australian Government security clearance. Appointment is subject to a national police check and other security/medical/character requirements.
Flexible Working
CSIRO offers flexible working arrangements and options for how, when and where you work.
Diversity and Inclusion
CSIRO is committed to recruiting a diverse workforce and ensuring all employees feel supported and empowered.
How to Apply
Please apply online and provide a cover letter and CV that demonstrate how you meet the requirements of this role.