Lead Cyber Analyst
Quick Overview
Job Description
Location: Canberra, ACT
Sector: Federal Government
Contract Duration: 12 months with 2 extensions of 12 months
Work Arrangement: Hybrid
WE PAY WEEKLY
About the RoleAn exciting opportunity exists for an experienced Cyber Security Analyst / Risk Assessor to support a large Federal Government department in strengthening its cyber security posture. Working within a fast-paced and collaborative ICT security environment, you will play a key role in conducting security risk assessments, developing security documentation, and providing expert advice on compliance with Australian Government security frameworks.
This role is ideal for a security professional who enjoys working across complex technology environments and engaging with a broad range of stakeholders to drive secure outcomes.
Key Responsibilities- Conduct security risk assessments across cloud, legacy, AI-enabled and complex ICT environments.
- Develop, review and maintain security documentation, including:
- System Security Plans (SSPs)
- System Security Plan Annexes (SSP-As)
- Security risk assessments and associated artefacts
- Provide security guidance and recommendations aligned with:
- Protective Security Policy Framework (PSPF)
- Information Security Manual (ISM)
- Essential Eight
- Assess application and system designs to identify risks and recommend appropriate controls.
- Present risk assessments, findings and recommendations to senior executive stakeholders.
- Work closely with technical and non-technical stakeholders to communicate cyber security risks and mitigation strategies.
- Identify opportunities to strengthen and improve the organisation's security posture.
- Collaborate with cross-functional teams to ensure security compliance across projects and operational environments.
To be successful in this role, you will demonstrate:
- 3-5 years' experience conducting cyber security risk assessments within a Government environment.
- Proven experience assessing:
- Azure Cloud environments
- Legacy ICT systems
- AI technologies
- Complex enterprise systems
- Strong working knowledge of PSPF, ISM and Essential Eight requirements.
- Experience providing security advice on application and system architectures.
- Ability to engage effectively with both technical and business stakeholders.
- Experience presenting complex security findings and recommendations to senior executives.
- Strong understanding of networking infrastructure and associated security considerations.
- Excellent written communication skills, with the ability to translate complex technical concepts into clear, business-focused documentation.
- Strong analytical, problem-solving and stakeholder management capabilities.
- Ability to work independently, manage competing priorities and deliver high-quality outcomes under pressure.
- Understanding or experience with Azure DevOps environments and processes.
Aboriginal and Torres Strait Islander people are encouraged to apply.
Skills
Similar jobs
Vendor Security Management Specialist
StratEdge It consulting INC · Austin, United States
12 minutes agoSecurity Engineering Consultant, Hardware
ECM Selection Ltd. · Royston, United Kingdom
55 minutes ago£75k/yrJourneyman Cyber Security Engineer (Splunk/TS) - USSOCOM EDAT Zero Trust
Kentro · Tampa, United States
1 hour agoJourneyman Cyber Security Engineer (Splunk/SIPR) - USSOCOM EDAT Zero Trust
Kentro · Tampa, United States
1 hour agoProduct Security Analyst (Mid-Senior) with Security Clearance
Boeing · Seattle, United States
2 hours ago$148.8k - $201.3k/yrSenior Splunk Cyber Security Engineer
MANTECH · Chantilly, United States
2 hours ago