JOB

IT Security Services Specialist x 1

Apply before 6PM (AEDT) on: Tuesday, August 17, 2021

Australian Capital Territory

Agency / Department

Department of Foreign Affairs and Trade

Experience Level

Senior

Employment Type

Contract

Expected Rate (inc. Super)

$125 per hour***

Overview and Responsibilities

IT Security Service Specialist is responsible for providing authoritative advice and guidance in support of DFAT activities. You will monitor and identify security environment market trends and pro-actively carry out assessment of benefits and risk impacts on business strategies, ensuring the adoption of and adherence to standards, and accreditation of complex information systems. You will support the investigation of major breaches of security and provision the authoritative advice and guidance on the requirements for security controls in collaboration with experts in other functions e.g. legal, technical support and policy. You will require comprehensive knowledge of IT security and be willing to challenge yourself in meeting the demands of the role, in an ever-changing operational environment. The successful candidate will be required to: - Deliver security architecture, design, accreditation - Deliver IT security capability development - Deliver IT security vulnerability management - Deliver IT security continuous assessment and security control validation model - Provision of authoritative advice and guidance on security strategies - Management of identified risks - Obtain and act on vulnerability information by conducting security risk assessments and business impact analysis - Recommend appropriate control improvements - Ensures architectural principles are applied during design to reduce risk and drive adoption and adherence to policy, standards and guidance The successful candidate will have the following skills and experience: - Extensive experience in application development, application security such as OWASP and SecDevOps tools - Extensive demonstrated experience working in IT Security within Australian Government environment - Relevant tertiary or comparable qualifications in IT, Systems Engineering or related field will be highly regarded - Demonstrated knowledge of and experience in the application of the Information Security Manual (ISM) and the Protected Security Policy Framework (PSPF) - Experience working in Agile multidisciplinary development teams is desirable - Relevant industry certifications such as CISSP, IRAP and SABSA would be highly regarded

Essential Criteria

1. Exhibited experience in delivering IT security architecture, design and accreditation
2. Exhibited confidence to speak to, and deliver on architectural principles during design
3. Exhibited experience in delivering IT security capability development
4. Exhibited experience in delivering IT security vulnerability management
5. Exhibited experience in delivering IT security continuous assessment and security control validation models
6. Exhibited confidence to speak to, and deliver advice and guidance on security strategy
7. Exhibited experience in managing IT security risk
8. Exhibited experience in gathering, assessing and reporting on IT security vulnerabilities
9. Must hold a current Negative Vetting Level 2 (NV2) security clearance

Desired Criteria

1. Demonstrated extensive experience in application development and security such as OWASP and SecDevOps tools
2. Demonstrated extensive experience working in IT security within Australian Government environment
3. Demonstrated knowledge of and experience in the application of the Information Security Manual (ISM) and the Protected Security Policy Framework (PSPF)
4. Experience working in Agile multidisciplinary development teams
5. Relevant tertiary or comparable qualifications in IT, systems engineering, or related field will be highly regarded
6. Relevant industry certifications such as CISSP, IRAP and SABSA would be highly regarded

Security Clearance

Must Have current negative vetting level 2 clearancecurrent nv2 clearance

Contract Extensions

2 x 12 months