Governance, Risk

Company Description

At Leidos, we do work that really matters inspired by our mission to make the world safer, healthier, and more efficient through technology, engineering, and science. With 25 years of local experience, our 2000 team members, work together to solve Australia’s toughest challenges in government, defence, intelligence and border protection. We’re robust and ambitious, and we empower our people to do their best work. You’ll feel inspired by what you can achieve and will be supported by an inclusive and flexible culture that genuinely cares for your wellbeing. Together, we can be the difference.

We've got so much to offer at Leidos, here are a just a few of the **Benefits** we provide our team:

- ** Flexible work arrangements** to support work life balance enabling you to feel supported and achieve balance.
- ** Life Days** are the Leidos way of recognising that we all need some extra time out to take care of life. By working slightly more than the minimum weekly hours (2 hours per week for full timers) you can accrue up to **an extra 12 days of leave** per year.
- ** Professional development** and support to set you up for success and assist you in achieving your career aspirations.
- ** Leidos Life Hub **provides access to discount offers or cashback rewards with over 400 Australian and International retailers

**Job Description**:
Leidos Australia have a great opportunity that enables you to build on your Cyber Security experience and utilise your passion in a Governance, Risk and Compliance role.

In this permanent full time opportunity supporting a major Federal Government Program, you will be pivotal in ensuring the ongoing ICT security accreditation. You will ensure compliance with the applicable Information Assurance (IA) framework, policies and standards with a particular focus on the Information Security manual (ISM) and Defence Security Manual (DSM)..

Your responsibilities will include:

- Develop, implement and maintain security governance, including security frameworks, in accordance with the Information Security Manual.
- Develop, implement and maintain the Security SRMP, SSP’s, SRAs (assist with) documentation, supporting certification and accreditation for the service being delivered.
- Maintain and improve the system security documentation package.
- Liaise with service delivery areas, client management and client security areas to ensure security processes are effective, and have been implemented in the Service Delivery areas.
- Support of incidents that have substantial business impacts including risk assessments;
- Assessment of vulnerability analysis reports and other artefacts: and,
- Support the Compliance Cell with the ongoing security of the systems.

**Qualifications**:
**What you'll bring**

Coupled with your education and/or practical experience you will be customer-focused and motivated to learn new technologies and go the extra mile to ensure customer mission needs are met. In addition you will demonstrate the following knowledge and skills;
- Experience in combining and correlating security compliance tracking and reporting documentation.
- Experience in preparing IRAP assessments scope.
- Ability to communicate and collaborate with technical and non-technical audiences to establish objectives and ensure that these objectives are satisfied.
- Strong motivation and desire to increase knowledge in technical security domains.
- Interest in learning about GRC capabilities.

Additional Information

We’re a certified Family Friendly Workplace. We respect the caring responsibilities and needs of our people who needs to care for loved ones; it’s a mindset - not a policy. When you grow, we grow. Be it through our exciting pipeline line of projects or by partnering with a People Leader who will guide, mentor and support you

We’ve been keeping Australia safer, healthier and more efficient for 25 years, here’s just three ways how:

- We are helping the ATO across their transformational roadmap of activities to uplift the end user environment.
- We have consolidated 280 data centres into 12 domestic and three international sites, creating a new Centralised Processing environment of the Australian Department of Defence.
- We’re building the next generation secret end user environment for the Australian Department of Defence across a number of strategic locations around Australia.

Applicants may also need to meet International Traffic in Arms Regulations (ITAR) requirements. In certain circumstances this can place limitations on persons who hold dual nationality, permanent residency or are former nationals of certain countries as per ITAR 126.1.