Cyber Security Compliance Specialist

Application closing date: Friday, 07 April 2023 • 11:59pm, Canberra time (in Canberra)

Estimated start date: Monday, 01 May 2023

Location of work: ACT (Interstate candidates working remotely will also be considered)

Length of contract: 6 months (This role is part-time at 60% of FTE)

Contract extensions: 2 x 6 months

Security clearance: Must have Baseline

Rates: $120 – $150 per hour (inc. super)

The Department of Industry, Science and Resources (DISR) requires the services of a Cyber Security Compliance Specialist to work with system owners and business owners to identify and consider cyber security risk and appropriate remediation activities. This part time position (3 days per week) will be assigned to the assessment of new and upgraded systems to ensure the security accreditation requirements are met, as per the department’s Authority to Operate Framework (AtOF).

This position will be responsible for providing security advice in line with the department’s processes and policies and security frameworks including the Information Security Manual (ISM), Protective Security Policy Framework (PSPF) and Information Security Registered Assessors Program (IRAP). The chosen candidate will have demonstrated extensive experience working as a security compliance specialist, with knowledge of the ISM, PSPF and IRAP processes, and the communication skills necessary to provide advice and supporting documentation associated with the department’s security framework. While working closely with technical and non-technical departmental staff to achieve the required outcomes.

The candidate will be responsible for:

• Writing quality security accreditation documentation including SOA, SRMP, SSP, and Certification Reports
• Effectively communicating security concepts and controls to technical and non-technical stakeholders
• Providing considered security advice to stakeholders, team members and Executive
• Taking direction from the ITSA while working within the program team
• Facilitating and negotiating discussions to an agreeable decision.

Essential Criteria

1. The successful candidate will have the IT skills and relevant work experience, in conjunction with strong interpersonal skills and the ability to exercise initiative and sound judgement. Ability to work as part of an agile team and communicate with a range of internal and external stakeholders is also a requirement. • 5 years’ experience as a cyber security compliance specialist • Demonstrated experience in relation to the detailed skill set (outlined above) • Excellent attention to detail • Experience working in large complex ICT environments with a focus on Microsoft technologies • Ability to consult with a range of both technical and non-technical personnel. • Extensive knowledge of Australian Government Policies and frameworks relating to Government Services. (Please provide a 500-word summary addressing your suitability against the above criteria).