Job Title: Cybersecurity Specialist
The Cybersecurity Team is responsible for providing expert advice and guidance on engineering changes for the Hobart Class DDG in the RAN fleet. This involves contributing to architecture development, design coordination, technical investigations, risk assessments, and identifying opportunities for programmatic efficiencies across different phases of the engineering lifecycle.
Key Responsibilities:
* Integrate cyberworthiness considerations into the engineering effort for systems, subsystems, and networks.
* Contribute to ICT, Emanation or Physical security certification and accreditation activities throughout the engineering lifecycle.
* Assess and mitigate system security threats/risks throughout the program life cycle.
* Identify, define, and analyze system security requirements.
* Plan and conduct security test and evaluation activities.
* Prepare and develop security documentation to support system authorization.
* Review system, subsystem, and component design artefacts.
* Liaise with Australian defence security authorities.
* Produce/maintain security documentation to support achieving ICT, Emanation and Physical Security accreditation of the systems and networks.
About You
Your skills and experience should include:
* Systems engineering lifecycle methodologies.
* Reviewing, interpreting and implementing Information Security Manual or NIST SP 800 53 controls.
* Interpreting security requirements, analyzing and recommending security measures and policies.
* Designing and implementing ICT security policies.
* Using security information and event management tools and analytics.
* Evaluating ICT infrastructure (hardware/software) configurations for security vulnerabilities.
* Strong technical documentation.
* Understanding of security responsibilities and application.
* Working in defence or critical infrastructure.
* Sound working knowledge of current cyber security risks and experience implementing security solutions.
* Implementing multi-factor authentication, single sign-on, identity management or related technologies.
* Overseeing security testing and making recommendations to improve, liaising and scheduling external parties to validate as appropriate.
* Ability to engage with a broad range of stakeholders to influence and enforce security measures.
* Problem solving skills and ability to work under pressure.
* A thorough understanding of the Australian Government security accreditation/authorization process.