Consultant - Security Assessor

QinetiQ employs more than 8000 people in 51 locations around the world, offering our customers premier expertise in advice, services and creative technology-based products.

QinetiQ Australia, part of the global QinetiQ group, provides technological and scientific expertise to help customers protect and advance their vital interests. As an innovative science and technology company, we help solve some of our customers' most challenging problems. Our determination to deliver and improve today and anticipate and shape tomorrow, makes QinetiQ a very exciting, rewarding and respected place to work and learn.

**As a Security Assessor, your responsibilities will include**:
Contributing to the risk assessment of systems to identify any gaps in system security.

Participating in ICT security assessments and the documentation.

Determining the impact of any potential vulnerability, propose treatment options, mitigation strategies, and be able to articulate residual risk.

Delivering and discussing recommendations on the suitability of assessed systems for certification, along with residual risk levels.

Working collaboratively with stakeholders, including section auditors, system owners and other agencies whilst undertaking certification and accreditation activities.

Contributing to other activities relating to ICT security such as, development of ICT awareness briefs, ICT security procedures and documentation, and business processes.

To be successful in the role of a Security Assessor, you will need to bring with you:
Knowledge of the Australian government information security manual, Australian government protective security policy framework and ISO 27001

Demonstrated experience in the collection, presentation and analysis of information coupled with good report writing skills.

Strong problem-solving skills and attention to detail.

Excellent stakeholder engagement skills.

Confidence and self-motivation.

Whilst not essential, the following qualifications/skills are desirable:
Credentials as a Certified Information Security Manager (CISM) or a Certified Information Systems Security Professional (CISSP) or a Certified Information Security Auditor (CISA).

Qualified as a certified assessor under the Information Security Recognised Assessor Program (IRAP), or have an equivalent level of demonstrated experience.

Strong knowledge of the Defence Security Principles Framework (DSPF).

Applicants will also need to hold an existing Australian Government Security Vetting Agency (AGSVA) security clearance of at least Negative Vetting Level 1 (NV1).

As the successful applicant, you will join an experienced, innovative and supportive tight-knit team. You will work across a diverse range of projects and products in and will be exposed to different technologies and tools, allowing you to grow in your career and feel fulfilled in your work.

If you enjoy diverse work, flexibility, career growth and making a meaningful contribution to your team - this is the role for you

Looking for an Employer with Benefits?

At QinetiQ, our competitive remuneration and benefits package supports your evolving needs throughout your career. You’ll share in the company’s success, and be rewarded for your own. We’ll invest in your professional development and provide an inclusive environment for you to succeed.

**Some of our benefits include**:
Individual Professional Development Fund

Flexible work

Purchased leave program & loyalty leave

Up to 18 weeks paid parental leave

Annual incentive scheme

Complimentary salary continuance insurance

Annual volunteering leave with Operation Give Back

Relaxed dress code

LI-VM1

LI-Onsite