Job Description
Job Title: Senior Cyber Security Specialist
Security Clearance: Negative Vetting Level 1
Duration: Initial 9.5 months with 1 x 12-month extension
Industry: Information Technology
Functional Expertise: Cyber Security
Sub-functional Expertise: Security Architecture, Risk Assessment, Compliance
Location of work: ACT, NSW, NT, QLD, SA, TAS, VIC, WA
Working arrangements: Hybrid; preference for Canberra or Brisbane. Other locations considered at Hiring Manager's discretion.
Closing date: 9AM Thursday, 7 August 2025
Description:
Our client is seeking a Senior Cyber Security Specialist to support a large-scale digital transformation program. This role will involve assessing and advising on ICT security compliance, developing security risk documentation, and influencing the direction of modernisation activities. The successful candidate will contribute to shaping secure ICT solutions aligned with program objectives, organisational risk appetite, and compliance requirements.
Responsibilities:
- Conduct security architecture reviews including the assessment of current and target-state security postures
- Develop or review Statements of Applicability and assess ISM and PSPF controls
- Prepare and evaluate Security Risk Management Plans and System Security Plans
- Support procurement activities with relevant security documentation and light-weight risk assessments
- Perform security risk assessments for proposed designs and technology solutions
- Provide technical judgement and strategic analysis to guide program decisions
- Build and manage strong internal and external stakeholder relationships
- Represent security perspectives across multiple forums
- Liaise with vendors and ICT partners on security-related matters
- Offer high-quality security advice to program leadership
- Travel to Canberra for onboarding, planning or training up to 1–2 times per quarter
Requirements:
- Extensive knowledge of ICT security within government or complex program environments
- Strong ability to produce security artefacts such as risk plans and system security documentation
- Experience aligning technical security with business objectives and risk appetite
- Excellent communication and stakeholder engagement skills
- Deep understanding of Australian Federal Government security policy
- Proven ability to work under pressure in a fast-paced and changing environment
Key Capabilities:
- Technical expertise in ICT security architecture and risk assessment
- Analytical and critical thinking applied to policy and solution development
- Influence and negotiation in complex stakeholder settings
- Collaborative mindset and cultural fit for transformation programs
Essential Criteria:
- 5+ years of demonstrated experience working as a Security Specialist inside complex and large-scale ICT projects/programs within Federal Government or private sector.
- Expert knowledge and experience in undertaking ICT security compliance and cyber security risk assessments, producing security documentation for both current-state and target-state.
- Proven ability to deliver information security solutions that meet business requirements and align with risk appetite and compliance obligations.
- Strong communication skills, with the ability to translate between business and technical terminology. Proven ability to communicate with influence, negotiate outcomes and manage complex stakeholder relationships.
- Sound working knowledge of Federal Government security policy
- Demonstrated personal drive and integrity whilst achieving results within legislative and budget parameters.
Desirable Criteria:
- Relevant tertiary qualifications in Cyber Security, ICT or a related field.
- Professional certifications in ICT security.
- Demonstrated knowledge of Commonwealth frameworks, including ICT frameworks.
- Previous experience with ASD Essential Eight and ASD ISM
How to apply:
Please submit your application including your resume and a completed application form addressing the essential and desirable criteria. Ensure your application highlights your experience and any relevant certifications.