Siteb - Technical Specialist Cyber Capabilities

**The Organisation**

The Australian Security Intelligence Organisation (ASIO) protects Australia and Australians from threats to their security. In a complex, challenging and changing security environment, our success is built on the imagination and intelligence of our team. ASIO's people are ordinary Australians but they do extraordinary things - they are our most important asset. To be successful in our mission, we need talented people who are highly capable, dedicated, adaptable and resilient.

**The opportunity**

ASIO investigates state-sponsored cyber actors seeking to pre-position, and/or undertake, acts of espionage, sabotage and foreign interference through exploiting computer and/or network access.

Our technical analysts leverage a variety of open source, classified, warranted or uniquely collected intelligence sources which are used to:

- Inform the tools, tactics, techniques, and procedures (TTPs) used by adversaries to conduct computer network exploitation (CNE) operations.
- Understand what is being targeted including reconnaissance of a particular network and the vulnerable vectors (open ports, unpatched services) to conduct a CNE operations.
- Identify indicators of computer access operations through identifying exfiltration / transfer of files from victim networks to the actor's infrastructure.

As a Technical Specialist Cyber Capabilities, you will lead the development and sustainment of systems and platforms that make ASIO's unique technical intelligence available for timely analysis. In this role you will work closely with internal stakeholders, domestic and international partners to ensure ASIO's technical analysis capabilities meet the evolving technology requirements to support our investigations.

A merit pool may be created to fill future vacancies which have the same or similar requirements to this position. This merit pool will be valid for up to 18 months.

**Role responsibilities**

As Technical Specialist Cyber Capabilities, you will:

- Work collaboratively with technology specialists within the organisation and with industry partners.
- Build and sustain capabilities which support digital collection, technical analysis and data pipelines to support critical cyber investigations
- Invest in the development of other technologists including actively mentoring and coaching on best practice approaches in your area of expertise.
- Lead the identification of new capabilities through industry and partner engagement, with the view to inform strategic planning in line with cyber priorities.
- Build productive relationships across the organisation and with partners as it relates to cyber capabilities..

**What you will bring**
- Well-developed stakeholder engagement and collaboration skills to deliver business outcomes.
- Proven ability to balance competing priorities and exercise sound judgement.
- Resilience and personal accountability for the quality of advice and delivery of results.
- A strong understanding of capabilities to collect, aggregate, interrogate and visualise cyber threat intelligence - in particular as it relates to state-sponsored cyber threats.

Applicants must also be able to demonstrate one or more of the following:

- A high degree of technical knowledge with experience supporting host-based digital forensics (file system and memory), network traffic analysis or similar disciplines.
- Experience developing and implementing technical collection capabilities.
- Experience implementing and supporting systems to enable technical analysis.
- Experience implementing and supporting data processing pipelines, especially in an environment with legislative compliance considerations.

While not mandatory, experience with any of the following would also be of value to the role:

- Technical data sets, analysis techniques and platforms.
- Network protocols and infrastructure.

**What we offer you**

ASIO provides a number of benefits to its staff including:

- A competitive salary, including a 7.5% allowance for maintaining a TOP SECRET-Privileged Access security clearance.
- Employer superannuation contributions of 15.4%.
- A variety of leave options, in addition to the standard 4 weeks annual leave to ensure your work-life balance.
- Flexible working arrangements to assist you to maintain your work-life balance. (Please note: due to our unique working environment, work from home options are generally not available.)
- Study assistance, including financial support and study leave for tertiary education.
- Access to 7 staff-led diversity and inclusion networks.
- Access to an Employee Assistance Program (EAP).

**Eligibility**

To be eligible for the role, you must be:

- An Australian citizen.
- Assessed as suitable to hold and maintain a TOP SECRET-Privileged Access security clearance.

**Reasonable adjustments**

**Location**

These positions are located in Canberra, Sydney or Melbourne. Applicants would be required to relocate to one of these locations if successful. Re