An Assistant Director within ITIS is expected to lead a team to deliver organisational outcomes in cyber security including implementation of capability improvements and detection methodologies, incident response, deep analysis activities and targeted response work to identify the presence of potential strategic insider threat concerns and mitigate insider threats to Defence.In addition to EL 1 administrative duties they are responsible for :Management of the ITIS Security Information and Event Management monitoring, detection and response capabilities.Complex problem solving and coordination activities, enabling detailed, time sensitive work in support of operational and strategic outcomes.Maintaining capability and technical competency within a high performing team.Triaging and statistical reviews of alerts and case history to review and report enacted cyber threat vectors and identification of malicious or risk behaviours on ICT systems.Multifaceted stakeholder engagements across agencies to maintain relations and technical competency of the capability.About our TeamThe Directorate of Insider Threat and Investigative Support (ITIS) is a highly skilled team comprised of cyber security professionals with a specialised focus on the timely detection and response to insider threats and digital indicators of concern presenting security risk within the Defence Enterprise portfolio.ITIS is a multidisciplinary team operating within Defence's complex and high-tempo environment. We work closely with internal and external stakeholders, including Investigative Authorities, to provide intelligence and digital artefacts to an evidentiary standard in support of digital security operations and investigations.As part of Defence Cyber and Information Assurance Branch, ITIS reports to the Defence Chief Information Security Officer (CISO) and operates as part of the broader Defence Cyber Security ecosystem. ITIS contributes to the overall Defence ICT security posture through monitoring and the development of ICT security policy settings. ITIS collaborates closely with risk and assessment management teams, ICT services providers and project teams to mitigate risks within the Defence Information Environment and achieve positive security outcomes.The ITIS directorate comprises of seven sections including Investigation Support, Insider Threat Intelligence, SIEM Engineering & Automation, ICT Platform Management, Sensitive Data Analysis, Protective Monitoring and Data Feed Assurance. These roles are within SIEM Engineering & Automation and Data Feed Assurance.Our Ideal CandidateOur ideal candidate will be able to demonstrate :Team leadership with a focus on strategic outcomes and effects.A strong analytical background with experience or training with a focus on cyber security and user monitoring.A technical background, with a focus on cyber security, data analytics and data engineering.Experience managing SIEM or similar capabilities to monitor user based cyber threat vectors.Experience providing subject matter expertise, clear technical direction and unique advice and assistance on cyber security challenges to stakeholders.Experience leading or participating in initiatives to develop information and cyber security solutions.Experience managing personnel resources to ensure technologists develop and maintain competency to perform assigned tasks to the standards required.
#J-18808-Ljbffr