The position will include agreeing a security compliance framework with the certification and accreditation authorities and assisting project teams to design and implement security functions for their project deliverables. In conjunction with the certification and accreditation teams help projects to create security documentation to support formal compliance assessments and formal security approvals.
The successful candidate will need highly effective negotiation and communications skills and a strong background in information security, compliance assessments -including international and government compliance frameworks, and strong skills in conducting risk assessments for new technologies and capabilities.
The successful candidate must be able to work within project teams and work with project schedules and deliverables, negotiating security and compliance activities to fit into the project schedule as/when appropriate.
The program of work has multiple projects which range in size. The successful candidate may be required to work across one or more of these projects.
Major Responsibilities:
* Develop and provide guidance on information security architectures and access models.
* Evaluate compliance of IT systems development with Commonwealth IT security Certification and Accreditation standards.
* Ensure compliance with Commonwealth Government security standards.
* Ensure security risks, business functions and priorities are considered.
* Develop and maintain effective stakeholder relationships.
* Deliver requirements agreed throughout the agile development process.
* Participate in and contribute to design reviews, stakeholder meetings, agile/SCRUM processes
* Provision documentation in accordance with relevant policies and procedures.