The Role
The Assistant Director of Technical Risk Assessments is key to the delivery of Defence ICT Systems, ensuring that adequate security controls are implemented to defend against an ever-evolving threat landscape.
Your technical skills and sharp cyber security mind will be essential to provide direction to Defence ICT system owners, ICT projects, cyber security stakeholders and Defence vendors. The EL1 Technical Certification Manager will:
1. Be responsible for the ongoing management, sustainment and implementation of improved assessment processes to ensure that Defence maintains a capability that effectively assesses the cyber security posture of Defence ICT and quantifies cyber risk against current threats and technology trends
2. Engage with other government organisations both nationally and internationally, as well as industry partners
3. Be responsible for building team capability through coaching, feedback and mentoring activities to build resiliency and technical competency within a high performing team in an operational environment
4. Be highly-competent at assessing technical design documentation and identifying appropriate cyber risk’s to recommend effective controls
Occasional travel to Canberra required.
Successful applicant to be located near a Defence base to be able to access the Secret network when required.
About our Team
Defence Cyber and Information Assurance Branch plays a leading role in securing, assuring and defending Defence’s systems to support Defence’s mission. We are a multi-disciplined team consisting of APS, ADF, and contractors that work with all Groups and Services to support the protection of Defence information system capabilities. The Directorate of Cyber Security Assessments and Authorisation (DCSAA) is responsible for cyber risk assessment, and the conduct of assessment and authorisation of Defence ICT Systems to enable the provision of effective security controls.
The services DCSAA deliver directly support system owners and accountable officers to make informed risk-based decisions for managing cyber risk. We perform Cyber Risk Assessments, Vulnerability Assessments and Penetration Testing, Supply Chain Risk Assessment and Technical Evaluations of hardware and software products to verify and validate their security posture. The Directorate supports a wide customer base across all Defence Groups and Services and collaborates closely with other government agencies and international partners.
Our Ideal Candidate
Our ideal candidate will:
5. Have proficiency as a Cyber Security Risk and Compliance practitioner with demonstrable experience providing cyber risk assessment services to an organisation and enabling effective cyber risk management
6. Strong technical skills and confidence with reading system architecture diagrams and effectively translating risk posture to relevant stakeholders
7. Have proven leadership experience of multi-disciplinary teams, and a strong ability to drive effective collaboration across an organization
8. Be a pragmatic self-starter with a proven ability to manage competing priorities to a high standard of accuracy within allocated timeframes
9. Possess well-developed organisational skills, an understanding of data management best practice, and comprehensive analytical skills are highly valued
10. Strong written and verbal communications skills, to enable the breakdown of technically complex language and communicate complex ICT structures to users, managers and executive board members
11. Have personal resilience and the ability to solve complex problems to effectively operate in a high tempo and dynamic environment with competing priorities