Security Compliance Specialist
1 week ago
The Security Compliance Specialist is required to provide specialised support services for Defence ICT systems, which includes fixed and deployed systems, ranging from simple to complex systems/networks on behalf of Cyber Security Assessments and Authorisation (CSAA) Directorate.
This role will undertake ICT security assessments of classified systems in accordance with the requirements of Government and Defence security policies, procedures and guidelines (including but not limited to the ISM, PSPF, CSAA Framework and DSPF). This will include as the main deliverable output, the completion of a Security Assessment Report and Authorisation Brief in DCIAB format.
The main responsibilities include:
• Assess the effectiveness of security controls for a system and its operating environment;
• For each system assessed, produce a report that details the assessment including;
- Scope/Background
- Security strengths and weaknesses (including key threats and vulnerabilities)
- Security risks
- Effectiveness of currently implemented security controls
- Recommended remediation actions (this may include stage 2 recommendations, VA/Pen test, suggested improvements, as well as potential caveats of operational or Production use depending on system maturity and security posture).
- Attend meetings and workshops as required to provide ICT Security advice and guidance to stakeholders and customers.
- Contribute to reporting and briefing requirements of the Directorate.
- Adhere to Defence, Defence Cyber and Information Assurance Branch (DCIAB) and CSAA principles and practices.
- Achieving Authority to Operate requirements.
Tertiary qualification and/or demonstrable industry experience in an ICT discipline or equivalent.
-Two or more of the following Certifications:
- Certified Industry System Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- ISO 27001 Lead Auditor
- Global Information Assurance Certification (GIAC)
- Global Information Assurance Certification Forensic Analyst (GCFA)
- Certified Information Systems Auditor (CISA).
-Experience in ICT Security Risk Management and methodologies.
-Demonstrated experience in ICT system assessment and authorisation review and approval process from a security and risk perspective.
-Ability to work under broad direction, with a considerable degree of autonomy.
-Detailed understanding of the Protective Security Policy Framework (PSPF), Information Security Manual (ISM) and Defence Security Policy Framework (DSPF).
-Excellent communication skills.
Desirable Skills and Experience:
- Recent experience in security assessments of ICT systems in Defence.
- Familiarity with ITIL, NIST SP 800 series etc.
- Familiarity with CMFP, FMN, ZTA, Defence CP, SNOW, ASD Essential 8.
- Familiarity with DevSecOps reporting tools and Security dashboards and pipeline toolsets.
- Demonstrated experience in Defence Authority To Operate (Accreditation) review and approval process from a security and risk perspective.
Flexible working arrangement available on case by case basis; work location Canberra.
Minimum NV 1 security clearance (Active), preferred NV2 (Active).
-
Security Compliance Specialist
1 week ago
Canberra, n Capital Territory, Australia Jigsaw Notions Full time $80,000 - $120,000 per yearICT Security Compliance SpecialistLocation:Canberra (with some travel as required)Work Arrangement:On Site / Hybrid - Monday to FridaySecurity Clearance:NV1 (with ability to upgrade to NV2 preferred)About the RoleJigsaw Notions is seeking an experiencedICT Security Compliance Specialistto support government programs in the assessment and assurance of ICT...
-
Security Compliance Specialist
1 week ago
Canberra, n Capital Territory, Australia Narada Consulting Full time $90,000 - $120,000 per yearAbout NaradaWe are an Australian owned sovereign Small Medium Enterprise (SME) that delivers agile, collaborative and client focused ICT solutions.About the RoleLocation: CanberraSecurity Clearance:ActiveNV1 minimumThe Security Compliance Specialist will provide specialised support services for our ICT client, including fixed deployed systems. You will...
-
Canberra, n Capital Territory, Australia Amazon Web Services (AWS) Full time $100,000 - $150,000 per yearDescriptionAmazon obsesses over customers; delivering results for customers is what we do. We are looking for independent, passionate, and deeply experienced professionals in the Security, Compliance and Assurance domain to provide depth in assisting our partners, customers and their stakeholders to understand and address their security, regulatory and...
-
Cyber Security Specialist
1 week ago
Canberra, n Capital Territory, Australia Vertical Scope Group Full timeVertical Scope Group's(VSG) Professional Services Division across Australia as we seek a driven, highly skilled and competent,Security Cleared, Cyber Security Specialistto join our award-winning team in supporting our Defence and Intelligence Community customers.About you:Previous experience with reviewing systems architecture, including security...
-
Cyber Security Specialist
1 day ago
Canberra, n Capital Territory, Australia Strategic Partners Australia Full time $120,000 - $180,000 per yearWe are hiring for aPrincipal Cyber Security Technical Specialist - (EL2 Level)for one of our clients.Role:Principal Cyber Security Technical Specialist - (EL2 Level)Location of work:ACT (Onsite)/Remote work from the Brisbane office with occasional travel to Canberra (at the candidates expense) can be considered on a case-by-case basis.Contract duration:12...
-
Travel Security and Insurance Specialist
1 week ago
Canberra, n Capital Territory, Australia Abt Global Australia Full time $90,000 - $120,000 per yearJob DescriptionThe OpportunityThe Travel Security and Insurance Specialist leads the program employee health and travel insurance functions across Asia Pacific, including coverage queries, broker negotiation and coordination, renewals, compliance, and risk mitigation. This role also manages Abt Australia and UK's relationship with International SOS, ensuring...
-
Cyber Security Compliance Specialist
2 days ago
Canberra, Australia Aurec Human Capital Group Full timeWe are looking to engage a skilled and enthusiastic **Cyber Security Compliance Specialist **to join our Federal Government client! Our Federal Government Client seeks to engage experienced Cyber Security Compliance Specialist who will work to identify cyber risk and ensure compliance with our clients standards and the Australian Government Security...
-
Cyber Security Specialist
1 week ago
Canberra, n Capital Territory, Australia Leidos Full time $104,000 - $130,878 per yearDescriptionWe're a 'Family Friendly' certified workplace – we understand the often many and varied roles our team members need to play within their own unique family setting and actively support them.Our team feel Leidos is a great place to work. Learn more about our culture and benefits by visiting us here Do Work That MattersLeidos Australia delivers IT...
-
Cyber Security Engineer
2 weeks ago
Canberra, n Capital Territory, Australia OCRT Consulting Full time $100,000 - $140,000 per yearOCRT is seeking Expressions of Interest from Cyber Security Engineers with expertise in Defence security systems and technical implementation. We're looking for practitioners seeking to grow their career with an Australian-owned company working within the National Security Sector as part of our Canberra-based workforce.We are seeking EOIs from Cyber Security...
-
Canberra, n Capital Territory, Australia People Connect ICT Solutions Full time $100,000 - $120,000 per yearGreeting from People Connect.We are seeking for has a requirement for multiple resources to fill the role ofCyber Security Engineer / Platform Specialistto support critical ICT systems and provide sustainment of Cyber Security infrastructure and platforms.About the RoleLocation: Canberra ( hybrid)Contract: 12 months + 24 monthNV1The Cyber Sustainment Section...
