Cyber Security Architect (EL1 equivalent) - 2 Positions
Location: Canberra, ACT
Working Arrangement: Onsite, full-time. This role is Canberra based and requires attendance in the office five days per week. Remote or interstate based candidates will not be considered.
Clearance required: Must be able to obtain Negative Vetting Level 1 (NV1)
DFAT's Cyber Security and Networks Branch is seeking up to two highly skilled Cyber Security Architects to join the Cyber Architecture and Assurance Section. These roles are responsible for providing specialist cyber security architecture advice to ensure systems align with Australian and international standards and best practice, including the ISM, PSPF and NIST.
The Cyber Security Architect will focus on secure system design, enterprise security frameworks, risk assessments, and compliance with legislative and policy requirements. The role works closely with Enterprise Architecture and Governance, Risk and Assurance teams, project managers, internal ICT teams and external stakeholders to embed security across all phases of system development and operations, while supporting continuous improvement initiatives.
Duties and Responsibilities
1. Design and maintain secure architecture frameworks aligned with government security standards including ISM, PSPF and NIST
2. Conduct threat modelling and risk assessments to identify vulnerabilities and recommend mitigation strategies
3. Provide expert security guidance across ICT initiatives including cloud, infrastructure and application development
4. Ensure systems comply with relevant legislation, policies and data protection requirements
5. Support cyber incident response activities and contribute to post-incident analysis and remediation
6. Monitor emerging threats and technologies to continuously enhance DFAT's security posture
7. Engage with stakeholders to provide specialist security advice across complex ICT environments
Education/Certifications required
8. Degree in Cyber Security, ICT, or a related discipline
9. Professional certifications such as CISSP, CCSP, SABSA and/or TOGAF
10. Additional government-specific cyber security qualifications are desirable
Knowledge/Skills required
11. Demonstrated experience in cyber security architecture and secure system design
12. Strong knowledge of government security frameworks and standards including ISM, PSPF and NIST
13. Experience conducting risk assessments and providing security assurance
14. Knowledge of cloud security and identity and access management
15. Ability to communicate complex security concepts to technical and non-technical stakeholders
16. Experience providing security oversight across infrastructure and application projects
17. Familiarity with secure software development practices and DevSecOps principles is desirable
18. Understanding of data protection, privacy legislation and compliance requirements
19. Ability to influence and advise senior stakeholders on strategic security decisions
20. SFIA skills at Level 4 across Information Security, Information Assurance, Security Architecture, Specialist Advice, Risk Management and Stakeholder Relationship Management
Employment benefits
21. Initial 12-month contract with the option of two 12-month extensions
22. Maximum 40 hours per week
23. Work on highly sensitive and nationally significant ICT environments
24. Opportunity to contribute to the security of Australia's international operations
Diversity and Inclusion
DFAT is committed to fostering a diverse and inclusive workplace and encourages applications from individuals of all backgrounds.
Veterans
We strongly encourage veterans and individuals with Defence experience to apply. Your unique skills and background are highly valued, and we are committed to supporting your transition into this role.
#J-18808-Ljbffr