Principal Security Specialist

Key responsibilitiesInformation Security Services within CITEC covers the below a broad range of cyber security domains: - Security governance, risk and compliance
- Security architecture, roadmap and risk assessment
- Security consultancy and professional services to agencies
- Security initiatives to enhance our services or develop new security services for our clients
- Cloud security service offerings including both AWS and Azure
- Security operations focusing on the security infrastructure related services, gateway security protection, firewall management, DNS protective services and secure VPN to the whole of Government agencies
- Security incident management function for CITEC- ISO27001 implementation and ongoing operation.
As the Principal Security Specialist in Information Security Services, you will be providing a broad range of opportunities in security initiatives, security infrastructure technology services, security incident management and security risk assessments to clients, depending on your skillset and career aspirations.
Our security operations services are in a 24 hours a day / 7 days a week on-call environment, where after hours support is provided through automated tools and the required rostered on-call support staff.
Reporting directly to the Director, Information Security Services, you have the opportunity to combine your technical skills with consultancy and/or project management depending on client requirements and your own personal aspiration.
The below is a list of high-level responsibilities for this role: - Provide technical leadership to drive the innovative solution development and continuous security service improvement to the clients. Manage and lead the security operations and fee for service delivery to the clients. Drive the continuous operational improvement to achieve efficiency and better customer satisfaction. Implement or uplift the existing security incident and event management (SIEM) solution, such as Splunk or other new SIEM solution. Manage and lead security incident management process. Build collaborative working relationships with clients and staff to deliver customer centric services
- Undertake other tasks/domains within Information Security Services as required.
About youWe recognise and celebrate that everyone is unique and seek the applicant best suited to the role. We will assess your experience, knowledge and acquired skills, as well as your potential for development and your personal qualities. To thrive in this role, you will need to demonstrate the following:
Mandatory qualifications and conditions
- Nil
Requirements of the role
- Demonstrate sufficient technical competencies in the below Technical Competencies
- Well-developed stakeholder engagement, interpersonal skills and critical thinking skills to consult, negotiate and influence clients, vendors, CITEC teams and staff to achieve outcomes. An ability and professional drive to rapidly acquire skills in new security technologies such as Zero Trust processes and technologies, especially related to Zero Trust Network Access (ZTNA) solutions, new firewall management solutions and SIEM solutions. Passion and commitment to lead and drive continuous improvement in service delivery. Adequate organization and management skills to lead a team of technical specialists.
Highly Desirable Technical Competencies (one or more of the below)
- Sufficient knowledge and experiences in firewalls, DNS and other security technologies, such as Juniper SRX, Palo Alto, Cisco, Checkpoint and Splunk. Security incident management processes, SIEM solutions (e.g Splunk)This work is licensed under a Creative Commons Attribution 3.0 Australia License.