Cyber Team

Open To:
**Australian Citizens With Or able to Pass Security Clearance**

**Location**:
**On-Site - Adelaide, Brisbane, Canberra, Melbourne**

Seeking Talented Cyber Security, Team to enhance the agency's security posture through innovation, operationalisation and maintenance of cyber security technologies.

**Security Experts **wanted you will use their in-depth knowledge of ICT security models to provide expert advice on the creation and operational maintenance of system roles, access authorisations, and security profiles. They exercise a considerable degree of independence, with decision-making substantially dependent on their high-level judgement and consideration of wider agency implications. In performing a technical leadership role, Security Experts drive innovation, and changes in workplace practices, and organise work in the context of competing priorities and strategic direction.

**Role 1 Cyber Security Analyst EL1**

**Duties**
- promote security awareness and adhere to security administration processes across the organisation
- ensure alignment of ICT security model with corporate-level compliance requirements
- provide input into the development and resourcing of security policies, profiles, procedures and projects
- manage and coordinate validation activities and tasks to completion
- review scheduled security reports to track compliance
- perform risk assessments to identify high-risk access privilege assignments and segregation of duties conflicts
- review and assess change requests to ensure that ICT systems are under change control
- provide technical advice, support and recommendations on security best practices and security/access models
- lead and manage operations of a team, including overseeing work priorities, resource management and developing staff capability
- prepare and review a range of technical documentation and reports
- engage and partner with stakeholders, other agencies and service providers to influence business outcomes and build service delivery capability
- encourage innovation, continuous improvement and manage and support change
- resolve escalated technical issues and suggest alternative approaches
- monitor and manage work output and quality against established performance standards
- manage team contribution to costing process

**Skills & Atributes**
Skills for the Information Age (SFIA) required**:

- Information security SCTY - Level 5
- Quality assurance QUAS - Level 5
- Specialist advice TECH - Level 5
- Business intelligence BINT - Level 5
- Methods and tools METL - Level 5
- Knowledge management KNOW - Level 5
- Performance management PEMT - Level 5
- Stakeholder relationship management RLMT - Level 5

Ability to:

- think strategically and align operational activity accordingly
- lead, motivate and mentor, staff to achieve quality outcomes and project completion
- think laterally and generate innovative approaches
- assess risks and implement mitigation strategies
- develop and manage a range of internal and external stakeholder relationships
- manage and resolve conflict using appropriate strategies
- grasp expectations and concerns, and negotiate quality outcomes by effectively tailoring communication and communication styles
- develop long term plans for the team and manage work in the context of business priorities
- undertake objective, systematic analysis and draw accurate conclusions based on evidence
- make decisions based on professional judgement, risk evaluation and in the context of the environment
- work highly independently under broad direction and act collaboratively

**Role 2.**
**Cyber Penetration Testing Team Lead**
**EL1**

**Cyber Penetration Testing Team Leads **operate under broad direction, exercising sound decision making and judgement to produce high level policy advice. They may engage in complex problem solving and issues management. They may also coordinate and undertake detailed or sensitive projects that impact on strategic, political or operational outcomes for the agency. Cyber Penetration Testing Team Leads are also responsible for actively managing key stakeholder relationships within and outside the agency and may manage one or more work teams.

**Duties**
- manage complex cyber threat emulation activities in support of certification, accreditation, operational priorities or by request from agency Senior Leadership
- lead complex cyber threat emulation activities to verify deficiencies in technical security controls within the agency ICT systems
- collaborate with agency cyber security organisations to provide remediation advice to system owners and managers to improve system security posture
- assess cyber threat intelligence and interpret threat reporting for indicators of compromise and threat actor tools, techniques and procedures
- provide complex technical advice, recommendations and consultancy on networks, infrastructure, products and services supplied
- represent management in working groups and meetings to p