Cyber Security Compliance Specialist (Part Time, 0.6 FTE)
The Department of Industry, Science and Resources (DISR) requires the services of a Cyber Security Compliance Specialist to work with system owners and business owners to identify and consider cyber security risk and appropriate remediation activities. This part time position (3 days per week) will be assigned to the assessment of new and upgraded systems to ensure the security accreditation requirements are met, as per the department’s Authority to Operate Framework (AtOF).
This position will be responsible for providing security advice in line with the department’s processes and policies and security frameworks including the Information Security Manual (ISM), Protective Security Policy Framework (PSPF) and Information Security Registered Assessors Program (IRAP). The chosen candidate will have demonstrated extensive experience working as a security compliance specialist, with knowledge of the ISM, PSPF and IRAP processes, and the communication skills necessary to provide advice and supporting documentation associated with the department’s security framework. While working closely with technical and non-technical departmental staff to achieve the required outcomes.
The candidate will be responsible for:
- Writing quality security accreditation documentation including SOA, SRMP, SSP, and Certification Reports
- Effectively communicating security concepts and controls to technical and non-technical stakeholders
- Providing considered security advice to stakeholders, team members and Executive
- Taking direction from the ITSA while working within the program team
- Facilitating and negotiating discussions to an agreeable decision.
Estimated start date Monday, 01 May 2023
Initial contract duration 6 months
Location of work ACT, Offsite
Working arrangements The Department supports working from home arrangements on a case-by-case basis subject to the business needs of the supervising manager and business unit. Candidates seeking to work remotely may be considered for this role, please note clearly where the candidate is based and where they are seeking to work from.
Security clearance Must have Baseline
Essential criteria 1. The successful candidate will have the IT skills and relevant work experience, in conjunction with strong interpersonal skills and the ability to exercise initiative and sound judgement. Ability to work as part of an agile team and communicate with a range of internal and external stakeholders is also a requirement. • 5 years’ experience as a cyber security compliance specialist
• Demonstrated experience in relation to the detailed skill set (outlined above)
• Excellent attention to detail
• Experience working in large complex ICT environments with a focus on Microsoft technologies
• Ability to consult with a range of both technical and non-technical personnel.
• Extensive knowledge of Australian Government Policies and frameworks relating to Government Services
2. A 500-word summary addressing candidates' suitability against the criteria will be accepted.