Key duties may include, but are not limited to:
1. Identify, test, and assess applicable security controls in line with the Australian Government PSPF, ISM and agency policies and guidelines.
2. Assess the impact of risk against Enterprise Risk tolerance.
3. Collaborate widely to ensure risk is assessed at an enterprise level and all plausible remediation activities are identified.
4. Analyse and document security risk and recommend treatments and modifications to security practices and procedures using expertise and technical knowledge.
5. Undertake security risk assessments on key technology components and identify areas for remediation and appropriate remediation controls.
6. Work with the existing team members to analyse the cyber risks identified within the broader risk and controls environment to inform an assessment of the risk exposure.
7. Undertake the categorisation and prioritisation of cyber risks (and associated remediation actions) identified.
8. Document risk assessments within Service Australia templates.
9. Facilitate discussions with system owners and technical leads around the risks identified and the appropriate remediations.
10. Manage, develop, and support complex relationships with stakeholders to achieve work area goals.
11. Assist with the development and implementation of security policies, procedures, projects, and strategies.
12. Continuously work to improve the efficiency and effectiveness of the cyber security service.
13. Share knowledge and skills to identify and develop capability within the team.
14. Educate and inform departmental staff to promote understanding and ensure adherence to security policy and processes.
Kirra Services is a Supply Nation Certified ICT Service Provider. Specialising in Hardware and Software procurement for Government, Corporate, SME and Not-for-Profit Sectors. Services include consulting, recruitment and project management.
#J-18808-Ljbffr