Assistant Directors, Cyber Security Operations

Who We Are
PM&C's Digital Security and Workplace Operations Division (DSWOD) is in the exciting stage of establishing a new dedicated Cyber Security Operations Centre (SOC) to uplift our cyber defence capabilities and enhance our ability to proactively detect and respond to cyber threats.

The Cyber Operations team forms part of the Digital, Security, and Workplace Operations Division. Our division delivers workplace and business services that support PM&C and our shared service partners to operate effectively and deliver business outcomes. Our services span property, security, digital and information communications technology.

What You Will Do
Cyber Security Operations Centre (SOC) will serve as the central hub for monitoring, triage, and incident response across our ICT environments, providing real time situational awareness and threat intelligence to protect PM&C's digital systems and data.

We are looking for leaders who are passionate about building high-performing teams and establishing scalable and modern SOC functions.

As a new capability this is a unique opportunity to shape how the SOC is built and operated. You will:

• Manage and develop a team of cyber security analysts
• Oversee optimisation of cyber security technologies and platforms
• Monitor security events and coordinate the triage, investigation and response to cyber incidents
• Develop and exercise incident response plans and playbooks
• Provide regular reporting on SOC performance and threat trends to executive stakeholders
• Collaborate with ICT, cyber governance, executive and external stakeholders to ensure effective security operations.

Cyber Threat Exposure Management (CTEM) team is a newly established capability within DSWOD. The team proactively identifies, assesses, and reduces exposure to cyber threats across PM&C's digital environment.

The CTEM team provides visibility into the attack paths and exposures that adversaries could exploit, combining vulnerability management, attack surface analysis, threat intelligence, and prioritised remediation to continuously improve the PM&C's cyber security posture.

The Team Works Closely With Security Operations Centre, ICT, Cloud, And Cyber Governance Teams To Focus Resources On Countering Threats And Vulnerabilities Of Most Significance. As a New Capability This Is a Unique Opportunity To Shape How CTEM Is Built And Operated. You Will

• Lead the development of strong vulnerability and attack surface management processes and practices
• Oversee the effective detection, assessment, and remediation of cyber security vulnerabilities across PM&C
• Draw upon technical expertise to interpret reconnaissance scanning, identifying opportunities to minimise and harden the PM&C's cyber-attack surface
• Collaborate with technical and business stakeholders, communicating with influence to minimise the Department's exposure to cyber security threats and risk
• Lead, manage and develop members of the CTEM team
• Build and maintain strong relationships with internal and external stakeholders, including Government agencies, vendors, and industry partners.

What You Will Bring
As a Cyber Security Operations Centre Assistant Director, you will have:

• Demonstrated experience leading or managing operational cyber capabilities
• Working knowledge of SIEM, SOAR, EDR and log management technologies
• Experience developing SOC processes, playbooks and team structures
• Strong leadership, team building and stakeholder engagement skills
• Strong understanding of government cyber security requirements and frameworks such as the ISM and PSPF.

Relevant qualifications or industry certifications would be highly regarded.

As a Cyber Threat Exposure Assistant Director, you will have:

• Demonstrated experience leading vulnerability management, threat assessment, or cyber risk management functions
• Strong understanding of vulnerability types (e.g. CVEs, OWASP Top 10, cloud misconfigurations) and common exploitation techniques
• Experience using vulnerability scanning and assessment tools
• Knowledge of security patching, secure configuration, and system hardening practices.
• Familiarity with the Australian Government ISM, PSPF, and Essential Eight mitigation strategies
• Strong analytical, communication, and stakeholder engagement skills.

Flexible Work
At PM&C we recognise the broad benefits of offering flexibility in how, when and where work is performed. We consider flexibility first from a starting position of 'how can we make this work?' and consider individual circumstances and operational requirements in making genuine attempts to establish mutually beneficial arrangements. Please reach out to the contact officer if you would like to explore what flexibility might look like for you, such as part time work, variable start and finish times or working from home.

Eligibility

• Under section 22(8) of the Public Service Act 1999 , employees must be Australian citizens to be employed in the APS unless the Agency Head has agreed otherwise, in writing. At PM&C to be eligible for this position you should be an Australian Citizen at the closing date of application , unless exceptional circumstances apply.
• The successful candidate must be able to obtain and maintain a security clearance, or hold a current security clearance of an appropriate level.
• The successful candidate will be assessed through our pre-employment screening checks, such as an Australian Criminal History Check, and will normally be subject to a six-month probation period if new to the APS or has not yet completed their probation period elsewhere in the APS.

Security Clearance Required
Negative Vetting Level 1 (Secret)

How To Apply
If this sounds like the opportunity you are looking for, we want to hear from you Submit an online application through the Apply link by
11:30pm AEST on Sunday 31 August.