Overview
Security Lead Jobs in Scoresby, Victoria, Australia at Leidos
Title: Security Lead
Company: Leidos
Location: Scoresby, Victoria, Australia
Company DescriptionAt Leidos, we do work that really matters inspired by our mission to make the world safer, healthier, and more efficient through technology, engineering, and science. With 25 years of local experience, our over 2000 team members, work together to solve Australia’s toughest challenges in government, defence, intelligence and border protection. We’re robust and ambitious, and we empower our people to do their best work. You’ll feel inspired by what you can achieve and will be supported by an inclusive and flexible culture that genuinely cares for your wellbeing. Together, we can be the difference.
We’ve got so much to offer at Leidos, here are a just a few of theBenefitswe provide our team:
12 Extra Days Leave: Life Days are the Leidos way of recognising that we all need some extra time out to take care of life. By working slightly more than the minimum weekly hours (2 hours per week for full timers) you can accrue up to an extra 12 days of leave per year.
Leidos Life Hubprovides access to discount offers or cashback rewards with over 400 Australian and International retailers.
Professional developmentand support to set you up for success and assist you in achieving your career aspirations.
Job Description
Your New Role
Working on a Federal Government project, the Governance, Risk and Compliance position is focused on the delivery of secure, compliant and accredited Health Knowledge management Systems for JP2060 Phase 4. Specifically, the role will support the delivery of a complex system of systems for eHealth data hosted on cloud environments. Tasks include:
Engagement with key stakeholders, including internal project management, Assessment Authority representatives, security service providers, project subcontractors and vendors, other internal IT security personnel and business owners.
Lead a small team of GRC specialists ensuring that all work is completed according to the project plan.
Tailor and deliver security controls, artefacts, risk assessments, and security testing.
Provide advice on corporate policies and procedures required to operate the system and draft these documents.
Provide basic security configuration and monitoring for the project and educate administrators on their responsibilities to maintain security compliance.
Provide advice on secure software development practices.
Consideration of and alignment with project schedules such that the assessment and authorisation effort support the business requirement to operate the subject system(s).
Identification, validation and advocacy for security requirements (functional or non-functional) and dependencies associated with system delivery, transition into service or ongoing sustainment.
Development of an Authorisation Plan detailing the elements above with the necessary activities, artefacts and stakeholder contributions required to complete the certification and accreditation process for assigned projects.
Ownership of the Authorisation Plan with reporting as required by the business, project, Assessment Authority or other interested stakeholders.
Handover all completed artefacts to operational groups for ongoing sustainment of the authorised system.
Qualifications
Who You Are And What You’ll Bring
Current knowledge of and experience with the Australian Government Protective Security Policy Framework (PSPF) and the Information Security Manual (ISM).
Extens…
