Key duties may include, but are not limited to:
- Identify, test, and assess applicable security controls in line with the Australian Government PSPF, ISM and agency policies and guidelines.
- Assess the impact of risk against Enterprise Risk tolerance.
- Collaborate widely to ensure risk is assessed at an enterprise level and all plausible remediation activities are identified.
- Analyse and document security risk and recommend treatments and modifications to security practices and procedures using expertise and technical knowledge.
- Undertake security risk assessments on key technology components and identify areas for remediation and appropriate remediation controls.
- Work with the existing team members to analyse the cyber risks identified within the broader risk and controls environment to inform an assessment of the risk exposure.
- Undertake the categorisation and prioritisation of cyber risks (and associated remediation actions) identified.
- Document risk assessments within Service Australia templates.
- Facilitate discussions with system owners and technical leads around the risks identified and the appropriate remediations.
- Manage, develop, and support complex relationships with stakeholders to achieve work area goals.
- Assist with the development and implementation of security policies, procedures, projects, and strategies.
- Continuously work to improve the efficiency and effectiveness of the cyber security service.
- Share knowledge and skills to identify and develop capability within the team.
- Educate and inform departmental staff to promote understanding and ensure adherence to security policy and processes.
Kirra Services is a Supply Nation Certified ICT Service Provider. Specialising in Hardware and Software procurement for Government, Corporate, SME and Not-for-Profit Sectors. Services include consulting, recruitment and project management.
#J-18808-Ljbffr