Position: Cyber Security Risk Analyst APS6 Organization: Federal Government agency Engagement: Contract Duration: 12 months with 2x12 month extension Location: VIC, ACT, NSW Work Arrangements: Hybrid ***** MUST HOLD NV1 Security Clearance ****** The Role The APS6 Cyber Security Risk Analyst is accountable under broad direction to undertake work that delivers outcomes across the agency. The position is required to undertake projects that may include performing varied activities involving many different and unrelated processes or methods that may impact on the strategic or operational outcomes that support the agency's objectives. Responsibilities of the role include but are not limited toConducting security risk analysis of agency's internal systems and assessing the cyber threat, inherent vulnerabilities and the likelihood and consequences of adverse threat activity.Implementing better-practice methodologies and risk management practices aligned with MITRE Att&ck Framework, NIST, ISO 31000/ISO 27001 and the PSPF.Developing the production of system-specific security documentation artefacts, including Statement of Applicability, System Security Plan, Security Risk Management Plan, Cyber Security Incident Response Plan, Continuous Monitoring Plan and Security Assessment Plan.Developing Authority to Operate artefacts and managing security risks and controls uplift activities arising from cyber security risk analysis.Developing security risk advice to allow the agency to prevent detect and respond to cyber threat activity. Essential Criteria Minimum of 5 years' experience in Cyber Governance, Risk and Compliance, or a related field of cyber securityMust be an Australian citizen and hold a minimum NV1 Security ClearanceDemonstrated experience in the production of system-specific security documentation artefacts aligned to the Information Security Manual Suite of documentationDemonstrated experience conducting security risk analysis of ICT systems and assessing the cyber threat, inherent vulnerabilities and the likelihood and consequences of adverse cyber threat activity. Desirable criteria CISM, CISSP or other cyber security qualificationsA degree in computer science or a related field. If interested in this position, please APPLY here or reach out to Sejal on ******** or (email protected) with you latest CV please.