Security Consultant

BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.

**Security Consultant**

**About us**

Digital Intelligence operates in multiple countries and is home to over 4,800 world-class data, digital, cyber and intelligence experts within the BAE Systems Group. We work collaboratively to deliver digital expertise to our customers, partners as well as other parts of the Group. Working in partnership with us, organisations including governments, armed forces and commercial businesses can unlock their digital advantage and tackle the evolving challenges of the digital age.

**About you**

You are dedicated, skilled and knowledgeable. You are passionate about what you do and working with your team to get things done and support the national cyber mission.

**About the role**
- Assesses risk at the technical or system process level, delivered through the assessment of systems for compliance against defined security control frameworks
- Drafts high-quality risk assessments and reports detailing security issues, technical and governance control improvements, and recommendations to address identified security risks
- Provides an accurate categorisation of threats, threat actors and vulnerabilities, delivered through the completion of security threat and risk assessments of ICT and / or OT systems
- Develops security policies, procedures and plans, to ensure effective governance
- Collaborates with peers across the Digital Intelligence business, both in Australia and overseas, to look for ways to continuously add value to the business, build your professional network, and share experiences
- Understands business and information risk context (typical business drivers, cyber security threats and implementation challenges) of our customers
- Judges risk at a technical and business process level and clearly articulate both verbally and in writing to key stakeholders.
- Reviews effectiveness of controls (in relation to known controls frameworks as appropriate) and proposing proportionate security improvements.
- Analyses and research security technologies to support the development of innovative solutions.

**Functional requirements**
- Measures effectiveness of controls in place
- Measures business impact associated with systems or processes, via document review or structured questionnaires
- Supports interviews or investigations, including on-site visits and stakeholder workshops
- Communicates and works with our customers to assist them in effectively managing cyber security risk
- Familiar with information security standards, such as the Australian Government Information Security Manual (ISM) and 27001
- Familiar with information security frameworks, such as NIST Cybersecurity Framework
- Ideally hold at least one relevant industry certification, such as SANS ICS515, SANS ICS410, CISA, CRISC, GICSP, or CompTIA Security + (or demonstrate on track to achieving)
- Hold a national security clearance, or be willing to obtain.

**Business expertise and interpersonal skills**
- Possess strong written and verbal communication skills
- Have demonstrated stakeholder management experience
- Demonstrate attention to detail, be proactive and organised
- Be able to respond to setbacks in an agile and resilient manner

**Learn more about us & our benefits**:
**Rewards and benefits in Australia**:
**Why BAE Systems?**

This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.