Overview
Multiple Lead Cyber Advisor Jobs in Canberra, Australian Capital Territory, Australia at Powerdata Group Consulting
Title: Multiple Lead Cyber Advisor
Company: Powerdata Group Consulting
Location: Canberra, Australian Capital Territory, Australia
Location: ACT
Working Arrangement: Onsite based on 37.5 hours
Security clearance: Must have NV2 or above
We are seeking cyber specialists in the following areas:
Engineering – Capability Development
Assurance – Continuous Monitoring
Assurance – Security Assessment
Operations – Audit Analysis and Response
Key duties and responsibilities
Engineering – Capability Development:
Integrate new systems with cyber capabilities to ensure coverage and collection of valuable audit events
Develop and enhance technical capabilities covering:
audit and response (SIEM);
vulnerability management; and
automated patching and security testing.
Assurance – Continuous Monitoring:
Expand coverage of vulnerability management and patching across systems and classifications.
Perform continuous monitoring activities to remediate identified vulnerabilities, this includes:
vulnerability management within context of the system;
penetration testing and configuration analysis; and
development of critical patch/mitigation/remediation reports.
Reporting and education of cyber security vulnerabilities to inform system owners/managers and improve cyber defence.
Assurance – Security Assessment:
Develop and enhance security assessment capability, models and processes to streamline authorisation and improve security posture.
Undertake security assessment of ICT systems and platforms covering:
development of security assessment test plans;
performing on system security control validation; and
documenting the security assessment and Plan Of Actions and Milestones (POA&M) reports.
Operations – Audit Analysis and Response:
Monitor security capabilities for issues, events, IOCs and suspected intrusions across systems / classifications
Lead technical response activities for confirmed incidents ensuring timely action and reporting is provided to key stakeholders.
Develop technical response processes and plans for confirmed security incidents.
Research, identify and maintain audit use cases by engaging customers, developing detailed requirements and evaluating/monitoring
effectiveness.
LH-02631
Requirements
Response must be as a one-page pitch addressing the essential criteria:
Essential criteria
1. Engineering – Capability Development: – Proven experience in security engineering, software development, data engineering, or system integration is essential. – Hands on experience with Splunk and/or Tenable is essential. Assurance – Continuous Monitoring: – Proven experience in vulnerability management is essential. – Hands on experience with Tenable and/or Splunk is essential. Assurance – Security Assessment: – Proven experience in security assessment and/or security control testing is essential. – Sound knowledge and experience with ISM, PSPF and system authorisation is essential. Operations – Audit Analysis and Response: – Proven experience in security operations, data analysis and/or incident response is essential. – Hands on experience with Splunk is essential.
Desirable criteria
1. Engineering – Capability Development: – Relevant industry certifications are highly desirable. Assurance – Continuous Monitoring: – CISA or IRAP certification is highly desirable. Assurance – Security Assessment: – CISA or IRAP certification is highly desirable. Operations – Audit Analysis and Response: – Relevant industry certifications are highly desirable.
