Back to job search
IT Security Adviser - Part time
| Job title : | IT Security Adviser - Part time |
| Contract type : | Contract |
| Sectors : | |
| Job Reference : | 2923946 |
| Contact name : | joanne Finchett |
| Contact email : | joanne@whizdom.com.au |
| Job published : | about 5 years ago |
Seeking a IT Security Adviser - Part time to provide advice and guidance to the Agency whilst completing the ITSA functions and competencies as defined within the Statement of Requirements.
Location: Canberra - onsite for 2 days per week on part time basis
Duration: 12 months plus extension
Clearance: Must have baseline clearance
Essential skills and experience:
Nice-to-have skills and experience:
- Possess knowledge of IRAP and system certification and accreditation requirements
- Possess excellent knowledge of the ISM and PSPF
- Possess knowledge of risk management methodologies
- Possess extensive policy and document writing experience as they relate to security governance, risk and compliance
- Possess professional experience in developing a variety of technical documentation
Nice-to-have skills and experience:
- Possess a good understanding or background in information security tools such as SIEM, endpoint software, IPS, IDS products
- Possess relevant security certifications such as CISSP, CISM, CISA etc
- Possess previous experience as an ITSA
Additional Information:
The ITSA, or their supporting organisation, should possess competency within the following areas:
1. Comprehensive knowledge of the standards which govern the security of government information and ICT systems including:
a. The Australian Signals Directorate’s publication the Australian Government Information Security Manual (ISM)
b. The Protective Security Policy Framework (PSPF)
c. ISO 31000 Risk Management and ISO 27005 Information Technology Security Risk Management
2. Competence in ICT security and the application of ICT security measures
3. Security risk assessment and management and subsequent Policy, Plan and Procedure development including the Security Risk Management Plan (SRMP), System Security Plan (SSP), Statement of Applicability (SOA) and Standard Operating Procedures (SOP)
4. Development and delivery of ICT security awareness training to Agency personnel
5. ICT systems audits to detect security incidents and recover evidence for security investigations.
The ITSA will assist with the coordination of the governance of ICT security measures to ensure:
1. The Confidentiality, Integrity and Availability of Agency’s ICT systems and information are protected against compromise, and
2. Information in electronic form is stored, processed and/or communicated in accordance with the Agency’s requirements and Australian Government policies.
The functions of an ITSA, or supporting organisation, may include the following:
1. Assist Agency ICT security personnel
2. Assist the CSO/CISO with the development of the Agency’s ICT security strategy, plans, policies and procedures
3. Provide advice to agency personnel on ICT security
4. Assist ICT personnel respond to and/or manage ICT security incidents
5. Coordinate a range of ICT audits and system certification activities
6. Liaise with ICT contractors in the delivery of secure ICT services; and
7. Liaise with agency security staff providing physical, information and personnel security.
The performance of this contract will be measured against successful delivery of the required ITSA functions. The ITSA is to have monthly performance meetings with the Director of Governance to track performance and progress of projects.
1. Comprehensive knowledge of the standards which govern the security of government information and ICT systems including:
a. The Australian Signals Directorate’s publication the Australian Government Information Security Manual (ISM)
b. The Protective Security Policy Framework (PSPF)
c. ISO 31000 Risk Management and ISO 27005 Information Technology Security Risk Management
2. Competence in ICT security and the application of ICT security measures
3. Security risk assessment and management and subsequent Policy, Plan and Procedure development including the Security Risk Management Plan (SRMP), System Security Plan (SSP), Statement of Applicability (SOA) and Standard Operating Procedures (SOP)
4. Development and delivery of ICT security awareness training to Agency personnel
5. ICT systems audits to detect security incidents and recover evidence for security investigations.
The ITSA will assist with the coordination of the governance of ICT security measures to ensure:
1. The Confidentiality, Integrity and Availability of Agency’s ICT systems and information are protected against compromise, and
2. Information in electronic form is stored, processed and/or communicated in accordance with the Agency’s requirements and Australian Government policies.
The functions of an ITSA, or supporting organisation, may include the following:
1. Assist Agency ICT security personnel
2. Assist the CSO/CISO with the development of the Agency’s ICT security strategy, plans, policies and procedures
3. Provide advice to agency personnel on ICT security
4. Assist ICT personnel respond to and/or manage ICT security incidents
5. Coordinate a range of ICT audits and system certification activities
6. Liaise with ICT contractors in the delivery of secure ICT services; and
7. Liaise with agency security staff providing physical, information and personnel security.
The performance of this contract will be measured against successful delivery of the required ITSA functions. The ITSA is to have monthly performance meetings with the Director of Governance to track performance and progress of projects.
Contract Term - 12 Month Contract plus extension
Security Requirements- Applicants must be Australian Citizens and have a Baseline Security Clearance
Applications close 28 April, please upload your resume to apply. Please note, that selection criteria is required for this role.
Call Jo Finchett 1300 944 936 for any further information.
Job has Expired