Manager Information Security (Operations Technology) , Transport And Main Roads

Start a new journey with us! #wearetmr
Transport and Main Roads' (TMR) vision is to create a single integrated network accessible to everyone. We are delivery focused, united by our purpose to make a difference to the lives of Queenslanders. Lead the provision of both strategic and operational advice on the Intelligent Transport System (ITS) Operational Technology (OT) Information Security requirements. A key focus for the role will be to embed security by design throughout OT solutions in an escalating cyber threat environment.
Job details Position status Permanent
Position type Flexible full-time
Occupational group IT & Telecommunications
Classification AO8
Workplace Location Brisbane Inner City
Job ad reference QLD/539040/24
Closing date 31-Jan-2024
Yearly salary
Fortnightly salary
Total remuneration
Salary Other
Job duration
Contact person Melissa Perkins
Contact details Phone: (07) 3066 3451
Access the
Some of your responsibilities will include*:

• Support the business with expert Information Security advice to comply with operational technology requirements to effectively manage vulnerabilities, threats, and remediation processes for road network operations' ITS, smart asset monitoring and camera detected offence systems.
• Work with information asset custodians to ensure in scope ITS assets are security classified and security risks are identified and appropriately risk managed.
• Generating comprehensive vulnerability and risk reports, ensuring the collection and presentation of data from vulnerability threat management, system penetration testing, and threat and risk assessments in alignment with departmental security standards.
• Identifying risk, developing and overseeing the implementation of applicable treatment plans.
• Maturing ITS OT cyber security controls and develop and implement plans for reducing cyber risk across the ITS OT environment through the execution of agreed treatment plans.
• Provide advisory and technical expertise to guide the department and it's ITS platform technology vendor on security by design and deployment of secure industrial control systems and operational technology.
• Manage support requests to resolve complex ITS operational technology cyber security issues ensuring agreed service levels are met.
• Review current and proposed ITS operational technology information systems for compliance and provide advice for remediation plans to address any Information Security compliance issues.
• Integrate Information Security into existing procurement, software development and project management life cycles ensuring requirements align with the TMR ISMS.

*refer to attached Role Description for more.
Desirable requirements:

• A degree from a recognised tertiary institution with related content (for example, engineering, transport planning, town planning, mathematics, economics, geospatial information systems, or a numerate discipline).

Mandatory qualifications and conditions:

• A current 'C' class driver's licence.

You will need to demonstrate the following*:

• Excellent knowledge of Information Security standards: ISO 27001, ISO 27005,ISO 31000, Cyber Essentials, ISF Standard of Good Practice for Information Security, NIST Cybersecurity Framework and CIS Top 18 Controls.
• One or more the following relevant qualifications will be highly regarded:
• ISO 27001 for Information Security Management System (ISMS) (auditor/implementer)
• IEC 62443 Certified Practitioner
• Certified Information Systems Security Professional (CISSP)
• Certified Information Systems Auditor (CISA) and/or
• Certified in Risk and Information Systems Control (CRISC).
• Proactively facilitates collaborations to develop contingency plans in response to identified risks.
• Display outstanding judgement/high-level integrity. Ability to provide impartial/forthright advice/make evidence-based decisions.
• Provides a stabilising influence in challenging and complex environments, supporting others to identify considerations, impacts and risks to plan a response.
• Views situations through a range of perspectives, analysing multiple sources of information to recognise the broader implications of issues.
• Strong agility to adapt to a constantly changing environment with a strong achievement orientation.
• Excellent interpersonal and communication skills coupled with the ability to articulate complex problems and solutions to a variety of audiences and to gain commitment from key stakeholders to support ideas or take action.

*refer to attached Role Description for more.
Further information
We are committed to building inclusive cultures in the Queensland public sector that respect and promote and .
Please ensure you download all attachments and follow the instructions on how to apply.
Documents
Before applying for this vacancy please ensure you read the documents below.