ICT Security Advisor - Contract - Canberra

Requirements

DEF22891 and Project HOTCHILLIE are projects managed within ASD to build and uplift ICT systems and support organisational elements.

The primary responsibilities and technical experience for the required roles are detailed below.

• Experience identifying and applying security controls to large scale complex capabilities and/or developing ICT Security analytics.
  
• Design ICT Security policy and documentation and implement practices technologies and governance.
  
• Analyse and assess ICT system security documentation and configuration including the use of vulnerability assessment tools.
  
• Undertake an ICT security threat and risk assessment.
  
• Work closely with other security practitioners to ensure that a capability has architectural security principles applied during design to reduce risk in the operational capability.
  
• Develop strategies that implement information control requirements for a capability that proactively assess and address the impact the controls may have on the capability s business strategies benefits and risks to operation of the capability.
  
• Develop advice and guidance on the requirements for ICT Security controls for a capability in collaboration with ASD security authorisation authorities and ICT Security Subject Matter Experts.
  

• Outline your experience in ICT Projects in an ICT Security Advisor capacity.
  
• Outline your experience performing Cyber Security risk assessments in an Australian Government context by referring to the latest Information Security Manual Protective Security Policy Framework and ACSC Essential 8 Maturity levels.