Security Compliance Specialist

7 days ago

Canberra n Capital Territory, Australia Opnlabs Pty Ltd Full time $98,765 - $123,456 per year

The Security Compliance Specialist is required to provide specialised support services for Defence ICT systems, which includes fixed and deployed systems, ranging from simple to complex systems/networks on behalf of Cyber Security Assessments and Authorisation (CSAA) Directorate.

This role will undertake ICT security assessments of classified systems in accordance with the requirements of Government and Defence security policies, procedures and guidelines (including but not limited to the ISM, PSPF, CSAA Framework and DSPF). This will include as the main deliverable output, the completion of a Security Assessment Report and Authorisation Brief in DCIAB format.

The main responsibilities include:


• Assess the effectiveness of security controls for a system and its operating environment;


• For each system assessed, produce a report that details the assessment including;

  • Scope/Background
  • Security strengths and weaknesses (including key threats and vulnerabilities)
  • Security risks
  • Effectiveness of currently implemented security controls
  • Recommended remediation actions (this may include stage 2 recommendations, VA/Pen test, suggested improvements, as well as potential caveats of operational or Production use depending on system maturity and security posture).
  • Attend meetings and workshops as required to provide ICT Security advice and guidance to stakeholders and customers.
  • Contribute to reporting and briefing requirements of the Directorate.
  • Adhere to Defence, Defence Cyber and Information Assurance Branch (DCIAB) and CSAA principles and practices.
  • Achieving Authority to Operate requirements.

Tertiary qualification and/or demonstrable industry experience in an ICT discipline or equivalent.

-Two or more of the following Certifications:

  • Certified Industry System Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • ISO 27001 Lead Auditor
  • Global Information Assurance Certification (GIAC)
  • Global Information Assurance Certification Forensic Analyst (GCFA)
  • Certified Information Systems Auditor (CISA).

-Experience in ICT Security Risk Management and methodologies.

-Demonstrated experience in ICT system assessment and authorisation review and approval process from a security and risk perspective.

-Ability to work under broad direction, with a considerable degree of autonomy.

-Detailed understanding of the Protective Security Policy Framework (PSPF), Information Security Manual (ISM) and Defence Security Policy Framework (DSPF).

-Excellent communication skills.

Desirable Skills and Experience:

  • Recent experience in security assessments of ICT systems in Defence.
  • Familiarity with ITIL, NIST SP 800 series etc.
  • Familiarity with CMFP, FMN, ZTA, Defence CP, SNOW, ASD Essential 8.
  • Familiarity with DevSecOps reporting tools and Security dashboards and pipeline toolsets.
  • Demonstrated experience in Defence Authority To Operate (Accreditation) review and approval process from a security and risk perspective.

Flexible working arrangement available on case by case basis; work location Canberra.

Minimum NV 1 security clearance (Active), preferred NV2 (Active).

  • Security Compliance Specialist

    7 days ago

    Canberra, n Capital Territory, Australia Jigsaw Notions Full time $90,000 - $120,000 per year

    ICT Security Compliance SpecialistLocation:Canberra (with some travel as required)Work Arrangement:On Site / Hybrid - Monday to FridaySecurity Clearance:NV1 (with ability to upgrade to NV2 preferred)About the RoleJigsaw Notions is seeking an experiencedICT Security Compliance Specialistto support government programs in the assessment and assurance of ICT...

  • Security Compliance Specialist

    7 days ago

    Canberra, n Capital Territory, Australia Narada Consulting Full time $90,000 - $120,000 per year

    About NaradaWe are an Australian owned sovereign Small Medium Enterprise (SME) that delivers agile, collaborative and client focused ICT solutions.About the RoleLocation: CanberraSecurity Clearance:ActiveNV1 minimumThe Security Compliance Specialist will provide specialised support services for our ICT client, including fixed deployed systems. You will...

  • Regulatory & Security Compliance Lead, ANZ, Compliance & Security Assurance

    7 days ago

    Canberra, n Capital Territory, Australia Amazon Web Services (AWS) Full time $100,000 - $150,000 per year

    DescriptionAmazon obsesses over customers; delivering results for customers is what we do. We are looking for independent, passionate, and deeply experienced professionals in the Security, Compliance and Assurance domain to provide depth in assisting our partners, customers and their stakeholders to understand and address their security, regulatory and...

  • Cyber Security Specialist

    7 days ago

    Canberra, n Capital Territory, Australia Hays Full time $90,000 - $120,000 per year

    Competitive salary + Career growthStructured learning & developmentImpactful work supporting DefenceCyber Security Specialist | Permanent | Canberra-Based NV1 RequiredYour new companyOur client is delivering critical cyber capabilities to support national security and digital resilience. Based in Canberra, the organisation is expanding its internal cyber...

  • Travel Security and Insurance Specialist

    7 days ago

    Canberra, n Capital Territory, Australia Abt Global Australia Full time $90,000 - $120,000 per year

    Job DescriptionThe OpportunityThe Travel Security and Insurance Specialist leads the program employee health and travel insurance functions across Asia Pacific, including coverage queries, broker negotiation and coordination, renewals, compliance, and risk mitigation. This role also manages Abt Australia and UK's relationship with International SOS, ensuring...

  • Cyber Security Specialist

    7 days ago

    Canberra, n Capital Territory, Australia Leidos Full time $104,000 - $130,878 per year

    DescriptionWe're a 'Family Friendly' certified workplace – we understand the often many and varied roles our team members need to play within their own unique family setting and actively support them.Our team feel Leidos is a great place to work. Learn more about our culture and benefits by visiting us here Do Work That MattersLeidos Australia delivers IT...

  • Security Architect

    7 days ago

    Canberra, n Capital Territory, Australia Cisco Full time US$150,000 - US$200,000 per year

    CX Security ArchitectWhat You'll DoCisco Security Services provides full life cycle services for Cisco's customers through delivery of advisory, integration, and handled services. Complementing the strongest portfolio of security products, Cisco is in an outstanding position to deliver enhanced security outcomes for its customers. Coordinated within Cisco's...

  • Cyber Security

    7 days ago

    Canberra, n Capital Territory, Australia e2 Cyber Full time $108,000 - $180,000 per year

    Job Description:Cyber Security & GRC AnalystJob Summary:Our client is seeking a motivated and detail-oriented Cyber Security & GRC Analyst to join their growing team. This opportunity is for someone with 1–2 years of experience in cyber security and/or governance, risk, and compliance (GRC) to build their career in a supportive and dynamic...

  • Accounting Compliance Manager, Program Compliance and Fraud Branch

    7 days ago

    Canberra, n Capital Territory, Australia National Indigenous Australians Agency Full time $90,000 - $120,000 per year

    The Opportunity:The Program Compliance and Fraud Branch is responsible for delivering program compliance, fraud control and investigation activities for the National Indigenous Australians Agency (NIAA). The Branch comprises 3 sections and is responsible for the receipt, assessment and investigation of allegations of fraud and serious non-compliance. The...

  • Security Compliance Specialist

    4 days ago

    Canberra, ACT, Australia Cdc Data Centres Full time

    **About us**:Established in 2007, CDC Data Centres is Australia's leading operator of sovereign, secure, world-class data centre facilities.Headquartered in Canberra with multiple facilities in the ACT, NSW and New Zealand, CDC's diversified operations provide secure data centre configurations that support co-location, containerised and hyperscale compute...