*Closing Date: 14 November 2024, 9:00 AMface2face reference: 623590 Location: ACT, NSW, VIC Hours: Full-timeContract length: 12 Months Contract + 1 x 12 Months (Pending approval)Entry requirements: Australian Citizen + Negative Vetting 1Pay range: $800.00 daily ex superAbout the role: The APS6 Cyber Security Risk Analyst is accountable under broad direction to undertake work that delivers outcomes across the Agency.The position is required to undertake projects that may include performing varied activities involving many different and unrelated processes or methods that may impact on the strategic or operational outcomes that support the Agency's objectives to "build a world-leading Agency Scheme". Duties Conducting security risk analysis of the Agency internal systems and assessing the cyber threat, inherent vulnerabilities and the likelihood and consequences of adverse threat activity. Implementing better-practice methodologies and risk management practices aligned with MITRE Att&ck Framework, NIST, ISO 31000/ISO 27001 and the PSPF. Developing the production of system-specific security documentation artefacts, including Statement of Applicability, System Security Plan, Security Risk Management Plan, Cyber Security Incident Response Plan, Continuous Monitoring Plan and Security Assessment Plan. Developing Authority to Operate artefacts and managing security risks and controls uplift activities arising from cyber security risk analysis. Developing security risk advice to allow the Agency to prevent detect and respond to cyber threat activity. Required experience/skills Minimum of 5 years' experience in Cyber Governance, Risk and Compliance, or a related field of cyber security. Must be an Australian citizen and hold a minimum NV1 Security Clearance. Demonstrated experience in the production of system-specific security documentation artefacts aligned to the Information Security Manual Suite of documentation. Demonstrated experience conducting security risk analysis of ICT systems and assessing the cyber threat, inherent vulnerabilities and the likelihood and consequences of adverse cyber threat activity. Desirable experience skills CISM, CISSP or other cyber security qualifications A degree in computer science or a related field. If this sounds like the role for you, and you'd like to learn more, click apply now. f2f Recruitment team will be happy to assist you.Urvish Kahar ******** (email protected) Excited about this role but don't believe your experience perfectly matches all job specifications? Why not examine your transferable skills? If they position you as a strong, quality candidate, it's well worth applying for the position. Read more on transferable skills: www.f2frecruitment.com.au/transferable-skills-more-important-than-ever #APS*Thank you for your interest in this position with face2face Recruitment. Our advertisements automatically stay live for 30 days, even if the position is filled beforehand. Should you find this role closed, not all is lost. If you submit your resume to us as a general expression of interest, we will consider you for other positions that suit your talent and experience. We may well have current positions to fill and will certainly consider you for future suitable roles. Submitting your resume has the added bonus of getting your name in the mix for opportunities we fill without even advertising. All you have to do is send your resume to (email protected).