ICT Security Advisor

Australian Citizens residing in Australia only respond. must have top secret Positive Vetting

ESSENTIAL CRITERIA:

Skills and Knowledge

1. Outline your experience in ICT Projects in an ICT Security Advisor capacity.

2. Outline your experience performing Cyber Security risk assessments in an

Australian Government context by referring to the latest Information Security Manual, Protective Security Policy Framework and ACSC Essential 8 Maturity levels.

Major Responsibilities:

1. Experience identifying and applying security controls to large scale, complex capabilities and/or developing ICT Security analytics.

2. Design ICT Security policy and documentation, and implement practices, technologies and governance.

3. Analyse and assess ICT system security documentation and configuration, including the use of vulnerability assessment tools.

4. Undertake an ICT security threat and risk assessment.

5. Work closely with other security practitioners to ensure that a capability has architectural security principles applied during design to reduce risk in the operational capability.

6. Develop strategies that implement information control requirements for a capability that proactively assess and address the impact the controls may have on the capability business strategies, benefits and risks to operation of the capability.

7. Develop advice and guidance on the requirements for ICT Security controls for a capability, in collaboration with ASD security authorisation authorities and ICT Security Subject Matter Experts.