Cyber Security Compliance Specialist

Federal Government Assignment

Contract Term: months + months extension

Locations -Greenway – ACT,Geelong -VIC

Max Day Rate: $ + GST

Hybrid / Flexible working arrangements provided – (minimum of 3 days each week in the office, with flexible arrangements in place for the remaining 2 days at home)

Working Rights: Australian Citizen

Security Clearance: Hold or be willing to obtain NV1 clearance (minimum)

About the Organisation
Our Federal Government client aims to support a better life for hundreds of thousands of Australians with a significant and permanent disability and their families and carers.

About the Team
The Cyber Security Governance, Risk and Compliance Team is building its capability with the aim to elevate its maturity. This role will assist significantly with that venture by assisting to establish the capability to provide assurance to senior leadership internal control testing, auditing and monitoring, and risk management and mitigation in the department.

The Role:
The successful cyber security compliance officer APS6 candidate will, under minimal supervision and direction, work to identify cyber risk and ensure compliance with agency’s standards and the Australian Government Security Framework, relevant laws and regulations, and industry best practices. This position also assists in maintaining and developing appropriate ICT policies, procedures, and documentation to maintain compliance with NDIA legislation and Policy. Reviews and evaluates cyber compliance issues and concerns within the department.Responsibilities of the role include but are not limited to:

Ensure ongoing compliance with the agency’s ICT policies and procedures

Design and/or conduct Cyber Compliance risk assessments

Build and maintain the controls matrix in alignment with multiple compliance frameworks and standards

Prepare compliance reports and status reports, identify issues, and report to senior management 

Support key business initiatives by identifying security and compliance related risks

Assist with various ICT internal and external audits, and their responses and remediation efforts

Ensuring internal compliance (including ICT, vulnerability scans, annual training, etc.) are executed in a timely manner 

Understand impact of vendor assessments and assist with the agency’s ICT vendor management program, and 

Communicate to senior management, through reports, presentations, metrics and other documentation, any cyber-security risks identified. 

Essential Skills and experience:
Mandatory Criteria:

Two or more years of experience in Cyber Security Governance, Risk and Compliance

Knowledge of and experience with relevant government security frameworks

Knowledge and experience with enterprise information and cyber security processes, concepts, and best practice with an exposure to government cloud models

Experience in analysing and interpreting information to develop recommendations to the Agency Senior Executive.

Strong written and oral communications skills

Desirable Criteria:

ICT risk and compliance experience

CISSP/CISM or equivalent certifications are preferred

Demonstrated experience in effective reporting to executive management

Demonstrated experience in adaptive leadership and collaboration and in challenging change environments

To Apply:
If you are interested in these roles, please submit your application by hitting APPLY NOW / send your CV via SEEK or call  Aureen Vaz  on  2 5  for a confidential discussion ( or email  [email protected]  )
Application Closes: Monday, April 3 ; AM Canberra Time

DFP welcomes applications from Aboriginal and Torres Strait Islander people, people with diverse cultural and linguistic backgrounds and people with disability. In addition, DFP will provide reasonable adjustments for individuals with disability throughout the recruitment process. If you identify as a person with disability and require adjustments to the application, recruitment, selection and/or assessment process, please advise via [email protected] or 0 and indicate your preferred method of communication (email, phone, text) so we can keep in touch and meet your accessibility needs.

Note: You may be required to provide evidence of your COVID- vaccination status.