Cyber Security Specialist – Australian Citizenship Required

Cyber Security Compliance Specialist – Australian Citizenship required.

The Cyber Security Governance, Risk and Compliance Team is building its capability with the aim to elevate its maturity. This role will assist significantly with that venture by assisting to establish the capability to provide assurance to senior leadership internal control testing, auditing, and monitoring, and risk management and mitigation in the organization.
The successful candidate will, under minimal supervision and direction, work to identify cyber risk and ensure compliance with the organization standards and the Australian Government Security Framework, relevant laws and regulations, and industry best practices. This position also assists in maintaining and developing appropriate ICT policies, procedures, and documentation to maintain compliance with the organizations legislation and Policy. Reviews and evaluates cyber compliance issues and concerns within the organization.

Duties The Cyber Security Compliance Officer is responsible for:

Ensure ongoing compliance with the organization’s ICT policies and procedures.

Design and/or conduct Cyber Compliance risk assessments.

Build and maintain the controls matrix in alignment with multiple compliance frameworks and standards.

Prepare compliance reports and status reports, identify issues, and report to senior management.

Support key business initiatives by identifying security and compliance related risks.

Assist with various ICT internal and external audits, and their responses and remediation efforts.

Ensuring internal compliance (including ICT, vulnerability scans, annual training, etc.) are executed in a timely manner.

Understand impact of vendor assessments and assist with the organizations ICT vendor management program, and

Communicate to senior management, through reports, presentations, metrics and other documentation, any cyber-security risks identified.

Essential Criteria

Two or more years of experience in Cyber Security Governance, Risk and Compliance

Knowledge of and experience with relevant government security frameworks

Knowledge and experience with enterprise information and cyber security processes, concepts, and best practice with an exposure to government cloud models

Experience in analysing and interpreting information to develop recommendations to the Agency Senior Executive.

The successful candidate will hold or have ability to obtain an AGSVA issued security clearance.

Strong written and oral communications skills

Desirable Criteria

ICT risk and compliance experience

CISSP/CISM or equivalent certifications are preferred.

Demonstrated experience in effective reporting to executive management.

Demonstrated experience in adaptive leadership and collaboration and in challenging change environments.

Should this opportunity align with your skills and experience please contact Dwayne Joyce at [email protected]