Job title: Senior Cyber Security Analyst EL1
Job type: Contract
Emp type: Full-time
Industry: Public Sector and Government
Functional Expertise: IT & Telecoms
Pay interval: Hourly
Location: Melbourne
Job published: 14-10-2024
Job ID: 36797

Job Description

Senior Cyber Security Analyst (EL1)

Federal government agency

12 months contract + possible extensions up to 24 months

Earliest start:  January 2025

Location: Canberra, Brisbane, Melbourne, Adelaide

Candidates must work from Services Australia’s offices in one of the identified locations a minimum of 3 days per week. 

Must Hold NV1

 

The Role

The Cyber Security Analysts will work within the Integrated Cyber Risk Management section to undertake cyber risk assessments of key technology components and systems. A Cyber Risk Analyst is required to meet Protective Security Policy Framework (PSPF) requirements and deliver key system authorisations on behalf of the Agency and Shared Services Partners. 

Key duties may include, but are not limited to:

  • Identify, test and assess applicable security controls in line with the Australian Government PSPF, ISM and agency policies and guidelines. 
  • Analyse and document security risk and recommend treatments and modifications to security practices and procedures using expertise and technical knowledge.
  • Contribute to the system authorisation program of work, system projects and programs, by developing or reviewing security artefacts, including Threat and Risk Assessments and System Security Plans. 
  • Manage, develop and support complex relationships with stakeholders to achieve work area goals. 
  • Manage and maintain the agreed service levels. 
  • Assist with the development and implementation of security policies, procedures, projects, and strategies. 
  • Continuously work to improve the efficiency and effectiveness of the cyber security service. 
  • Educate and inform departmental staff to promote understanding and ensure adherence to security policy and processes.

 

 

Selection Criteria

Mandatory

  • Extensive demonstrated experience with risk and information security frameworks, policies, and standards, including the Federal Government Protective Security Policy Framework (PSPF) and Information Security Manual (ISM), and international standards (ISO 27001/2).
  • Demonstrated working experience in security threat and risk assessment and development of security authorisation artefacts.

Weighted

  • Demonstrated security experience within complex ICT environments.
  • Strong stakeholder management skills, and the ability to communicate security concepts to non-technical audiences both verbally and in writing.
  • Understanding of global Cyber Security trends, attack vectors and techniques.
  • Demonstrated experience in Federal Government.
  • Relevant tertiary or other qualifications.
  • Demonstrated experience in Federal Government.