Talent Street is looking for an Assistant Director (Cyber Security Education and Compliance) for a federal government agency to support and contribute to the protection of the Agency’s systems, information and environment with a focus on enabling delivery of Cyber Security projects and programs of work.
Duration: 6 month contract
Location: ACT, NSW, VIC, QLD
Work Arrangement: Hybrid
The Assistant Director, Cyber Security Education and Compliance will lead and mentor a small team of Cyber Securityand Compliance professionals conducting risk and Compliance assessments of internal and external connections to agency systems. Substantial engagement with both external and internal stakeholders is required.
Key responsibilities
- Leading and conducting risk assessments of agency systems.
- Development, implementation and management of the Cyber Security Education Program
- Development, implementation and management of the Cyber Security Compliance Framework
- Development of IT security standards, policy, procedures, and controls to manage risks.
- Improvement of agency’s security positioning through process improvement, policy, automation, and the continuous evolution of capabilities.
- Documenting and reporting control failures and gaps to stakeholders. Providing remediation guidance and preparation of management reports to track remediation activities.
- Providing subject matter expert advice relating to Cyber Security considerations during Agency procurement activities
- Staying current on best practices and technological advancements and acting as a technical resource for security assessment and regulatory compliance.
- Performance of other related duties as assigned from time to time based on the business requirements.
Mandatory Criteria
- Minimum of 3 years’ experience in Cyber Governance, Risk & Compliance or a related field of Cyber Security
- Must hold Australian Citizenship and be willing to undergo Security Vetting processes.
- Experience assessing or designing on-premise, cloud hosted and hybrid solutions.
- Demonstrated experience in dealing with technical and non-technical business teams in a Cyber GRC engagement context.
- Knowledge of key Australian Government compliance frameworks including the ACSC’s ISM, AG’s PSPF and the ISO27000 series of frameworks.
- Highly developed written and verbal communication skills
Desirable Criteria
- Experience in the application of risk management principles and associated methodologies.
- Proven ability to make sound pragmatic decisions and judgements under tight timelines.
- Strong interpersonal and influencing skills with the ability to influence and drive change in a collaborative way both internally and externally.
If interested in the above role, please APPLY here, or reach out to Sejal on *******@talentstreet.com.au