* 12 month engagement + extensions
* Locations: QLD, ACT, VIC, NSW
* Ability to obtain a security clearance
* Candidate must be an Australian citizen
Key duties and responsibilities
* Advice: Provide authoritative and definitive expert advice and guidance on the implementation of information security controls and the identification of risks within existing solutions and architectures.
* Compliance & risk management: Maintain the security, confidentiality, integrity, availability and accountability of information assets, driving compliance and adherence and whole of government information security policies, and relevant standards. Identify, maintain, and contribute to technology risk management including developing and implementing strategies, policies, procedures, and controls in relation to the CMS Program. Design, develop, modify, document, test, and optimise information security software and system security policies related to the portal and wider CMS Program. Work with the program to create and refine the security documents required to complete an IRAP assessment (e.g. SSP, SRMP, CSA, CMP, IRP)
* Operational management: Provide leadership, direction, advice and support to cross functional teams responsible for ICT products and services, as a subject matter expert. This includes providing advice on key disciplines and services required to meet compliance and control requirements. Promote positive behaviours, leading by example and taking a proactive approach to training, and increased compliance value understanding.
* Delivery & stakeholder management: Provide leadership, direction, advice and support to cross functional teams responsible for ICT products and services supporting the CMS Program, as a subject matter expert. This includes providing advice on key disciplines and services required to meet compliance and control requirements. Promote positive behaviours, leading by example and taking a proactive approach to training, and increased compliance value understanding.
Essential criteria
1.Provides authoritative and definitive expert advice and guidance on the implementation of information security controls and the identification of risks within existing solutions and architectures.
2.Maintains the security, confidentiality, integrity, availability and accountability of information assets, driving compliance and adherence and whole of government information security policies, and relevant standards. Identify, maintain, and contribute to technology risk management including developing and implementing strategies, policies, procedures, and controls in relation to the CMS Program. Design, develop, modify, document, test, and optimise information security software and system security policies related to the portal and wider CMS Program. Work with the program to create and refine the security documents required to complete an IRAP assessment (e.g. SSP, SRMP, CSA, CMP, IRP)
3.Provides leadership, direction, advice and support to cross functional teams responsible for ICT products and services, as a subject matter expert. This includes providing advice on key disciplines and services required to meet compliance and control requirements. Promote positive behaviours, leading by example and taking a proactive approach to training, and increased compliance value understanding.
4.Provides leadership, direction, advice and support to cross functional teams responsible for ICT products and services supporting the CMS Program, as a subject matter expert. This includes providing advice on key disciplines and services required to meet compliance and control requirements. Promote positive behaviours, leading by example and taking a proactive approach to training, and increased compliance value understanding.
Desirable criteria
1. Academic or Vocational certification in Technology and/or appropriate industry better practice standards and frameworks with specialisation in cyber security (e.g., CISM, CISSP, CCSP, CISA, GIAC)
2. Degree or post graduate qualifications in information, technology, management and/or related disciplines
3. Vocational certification in modern information, communication and technology approaches including Agile, Scrum, SAFe, ITIL, TOGAF, COBIT, PRINCE2 / PMBOK, etc.
How to apply:
Please send your CV to
At Randstad Digital, we are passionate about providing equal employment opportunities and embracing diversity to the benefit of all. We actively encourage applications from any background.