Cyber Security Consultants X 2

The Cyber Defence Centre (CDC) will delivery cyber security operation services to Queensland Government entities. Its mission is to improve understanding of cyber threats, risks and response opportunities.

**Responsibilities - Principal Cyber Security Consultant**:

- Provide strategic direction and expert advice on cyber defence related technologies and products.
- Manage, design and develop cyber security service offerings that help improve whole of Government cyber security posture and mitigate current and emerging security threats.
- Unify and integrate a number of cyber security initiatives used by the security operation centre to provide enhanced threat intel, threat hunting and management capabilities for whole of Government.
- Plan, research and design robust security architecture for any new ICT initiatives within Cyber Defence Centre and ensure that architectures are consistent with organisation's cyber security architecture guidelines.
- Create solutions that balance business requirements with information and cyber security requirements.
- Perform security reviews, identify gaps in security architecture and develop a security risk management plan.
- Lead, drive and operate the whole of Government Cyber Security Centre of Excellence including management of relevant Community of Practices and building a body of knowledge.
- Analyse contemporary cyber issues and continuously seek improvements on systems to support the delivery of the security operations centre function, including developing business cases and cost models for new service offerings

**Essential Qualifications/Skills - Principal Cyber Security Consultant**:

- provide technical leadership in cyber defence solutions and service offerings
- utilise emerging technologies to design and implement security solutions to deliver security operations centre service; monitor and improve those solutions while working with an information security team.
- understand relevant industry security standards and protocols including ISO27001 and National Institute of Standards and Technology (NIST), ACSC Information Security Manual and other industry best practices & frameworks.
- prove knowledge and experiences in security methodologies, understanding of threat environments, industry trends, cyber security principles and organisational requirements relevant to manage confidentiality, integrity, availability, privacy, safety & reliability.
- prove knowledge and experience in risk management processes, e.g. methods for assessing and mitigating risks.
- possess outstanding communication skills including writing, strong critical thinking and analytical skills.

**Responsibilities - Principal Cyber Threat and Analytics Expert**:
As Principal Cyber Threat and Analytics Specialist you will:

- Provide strategic direction and expert advice on cyber threat intel and analytics related domains.
- Manage and lead to operate, maintain and continue to improve the cyber threat intel platform to be used by whole of Government.
- Lead the development and management of specialised projects to improve the threat intel and vulnerability management capabilities for whole of Government.
- Cultivate and maintain productive partnerships across Government to encourage information sharing on identified trends and improve collaboration.
- Analyse and fuse cyber threat event data with all-source intelligence to identify security relevant risks.
- Prepare and disseminate intelligence reports and executive dashboard that provide threat indicators, warnings and situational awareness to predict and prioritise current and emerging threats and vulnerabilities.
- Lead, develop and maintain a common threat profile for whole of Government, including an advanced persistent threat (APT) program.
- Produce analytical reports, briefings, and appropriate metrics for senior management, executives and agencies on cyber threat and vulnerability management that could potentially affect agencies based on industry trends on threats and vulnerabilities.
- Establish ongoing relationship with government agencies, industry bodies and other intelligence sources

**Essential Qualifications/Skills - Principal Cyber Threat Analytics Expert**:
For this role, we will consider how well you demonstrate your:

- strong technical leadership in cyber threat intel and analytics.
- extensive experience in performing threat hunting, identify potential intrusion or other anomalous behaviour.
- extensive experience performing detailed cyber event analysis and research from intelligence reports, threat assessments, and professional/policy institutions in order to make strategic recommendations countering relevant threat actors.
- ability to influence, communicate and establish a productive working relationship with stakeholders from whole of Government.
- extensive and thorough knowledge of information security principles, practices and vulnerability management.
- comprehensive knowledge of IT infrastructure, cloud techno