Baseline security clearance Role closing: Wednesday 10th December
Job details
This position will be responsible for providing security advice in line with the department's processes and policies and security frameworks including the Information Security Manual (ISM), Protective Security Policy Framework (PSPF) and Information Security Registered Assessors Program (IRAP). Demonstrated experience as a security compliance specialist is required. Knowledge of the ISM, PSPF and IRAP processes, and providing advice and supporting documentation associated with the department's security framework are required.
Key duties and responsibilities
- Lead and produce quality security accreditation documentation including Statement of Applicability (SOA), System Risk Management Plan (SRMP), System Security Plan (SSP), and Certification Reports
- Management of AtOF assessments ensuring they are completed within agreed timeframes
- Communicating security concepts and controls to technical and non-technical stakeholders
- Providing considered security advice to stakeholders, team members and Executive
- Act promptly to resolve compliance issues and address vulnerabilities, collaborating with relevant teams to implement relevant controls and improvements
- Completing security assessments in the departments IT service management risk system
- 5+ years of Governance, Risk and Compliance experience.
Essential criteria
- 5 years' experience as a cyber security compliance specialist and demonstrated experience in relation to the detailed skill set (outlined above).
- Experience working in large complex ICT environments with a focus on Microsoft technologies, and the ability to consult with a range of both technical and non-technical personnel.
- Extensive knowledge of Australian Government Policies and frameworks relating to Government Services.
- Ability to handle multiple assessments at any given point and excellent attention to detail.
