Description
A Federal government department in Canberra requires the Services of two Security Specialists.
They would need to deliver in collaboration with and under supervision by the Department's nominated personnel the following:
- Providing information security lead activities to an assigned ICT program and/or projects;
- Reviewing ICT Program/project solution designs in order to develop a supporting Security Accreditation Plan(s) and any related deliverables;
- Providing advice and develop required security documentation for systems certification covering areas such as application interfaces, databases, Infrastructure Services, WAN and LAN networking including Software-Defined Networks, and mobility services;
- Liaising with Information Security and Technology & Innovation teams to identify and capture processes and deliverables, followed by the development of security risk assessments, standard operating procedures (SOPs), Security Risk Management Plans, System Security Plans and/or independent IRAP-style assessments to other programs and/or projects (as directed);
- Undertaking security design reviews and evaluation against compliance objectives; and
- The specialist will develop security documentation including identifying security risks and propose suitable measures to mitigate those risks for any ICT work undertaken as part of T&I programs.
- Work effectively in a small team environment;
- Provide knowledge/skills transfer to other team members; and
- Record and maintain files/information in accordance with the department's requirements.
The Selection Criteria
Mandatory Criteria:
- Demonstrated ability to work under limited supervision alongside a team of skilled security leads;
- Demonstrated experience in security compliance activities against Australian Government security policy;
- Proven experience in delivering assurance services, accreditation/certification documentation, and implementing security controls for projects within the Federal Government; and
- Demonstrated knowledge of risk assessment tools, technologies and methods
Weighted Criteria
Highly Desirable
- Experience in planning, researching and developing security accreditation plans, pre-certification or interim authority to operate deliverables;
- Formal qualifications from a recognised tertiary institute or relevant industry experience in Information Security;
- Experience and knowledge in security architecture for public/private Cloud solutions;
- Well-developed analytical and conceptual skills;
- Self-motivated, able to use initiative, innovative and a strong commitment to achieve business objectives; and
- Excellent interpersonal and communication skills.
The contract period is from May 2018 to end April 2019 with extension options of 2*12 months.
The client requires the candidate to be an Australian Citizen and hold a Security Clearance of NV1 before commencement.
The role closes for applications at 12 noon on 6th April 2018.