The Role

The Assistant Director of Technical Risk Assessments is key to the delivery of Defence ICT Systems, ensuring that adequate security controls are implemented to defend against an ever-evolving threat landscape.

Your technical skills and sharp cyber security mind will be essential to provide direction to Defence ICT system owners, ICT projects, cyber security stakeholders and Defence vendors.

The EL1 Technical Certification Manager will:

• Be responsible for the ongoing development and implementation of improved assessment processes to ensure that Defence maintains a certification capability that assesses against current threats and trends in cyber security
• Engage with other government organisations both nationally and internationally, as well as industry partners
• Be responsible for building team capability through coaching, feedback and mentoring activities to build resiliency and technical competency within a high performing team in an operational environment
• Be very comfortable assessing technical design documentation and identifying appropriate risk statements and recommend effective controls

The additional payment is a Building Defence Capability Payment (BDCP) which enables Defence to provide a premium, in addition to the rate of salary otherwise payable under the Enterprise Agreement (EA) to some or all of the jobs within a critical occupation(s) or discipline within a workplace. Applicants engaged into a BDCP position must consider the following. BDCPs provide remuneration in addition to the Defence Enterprise Agreement (EA). This arrangement is subject to meeting eligibility criteria and is subject to annual review. Should your performance fall beyond requirements or the eligibility criteria not be met, your eligibility for the BDCP may be reviewed and ceased. It may also be ceased should you change positions or the requirement for the BDCP is no longer necessary, as determined by Defence. Should the BDCP be ceased you will be advised and your BDCP additional payment will cease.

About our Team

ICT Security Branch plays a leading role in securing, assuring and defending Defence’s systems to support Defence’s mission. We are a multi-disciplined team consisting of APS, ADF, and contractors that work with all Groups and Services to support the protection of Defence information system capabilities.

The Directorate of Cyber Security Assessments and Authorisation is responsible for cyber risk assessment, and the conduct of certification and accreditation of Defence ICT Systems to enable the provision of effective security controls and support system owners and accountable officers to make informed risk-based decisions for cyber risk and management of cyber security controls.

We perform Cyber Risk Assessments, Vulnerability Assessments and Penetration Testing, Supply Chain Risk Assessment and technical evaluations of hardware and software products to verify and validate their security posture. The Directorate supports a wide customer base across all Defence Groups and Services and collaborates closely with other government agencies and international partners.

Our Ideal Candidate

Our ideal candidate will:

• Have proficiency as a Cyber Security Risk and Compliance practitioner with demonstrable experience providing cyber risk assessment services to an organisation and enabling effective cyber risk management
• Strong technical skills and confidence with reading system architecture diagrams and effectively translating risk posture to relevant stakeholders
• Have proven leadership experience of multi-disciplinary teams, and a strong ability to drive effective collaboration across an organisation
• Be a pragmatic self-starter with a proven ability to manage competing priorities to a high standard of accuracy within allocated timeframes
• Possess well-developed organisational skills, an understanding of data management best practice, and comprehensive analytical skills are highly valued
• Strong written and verbal communications skills, to enable the breakdown of technically complex language and communicate complex ICT structures to users, managers and executive board members
• Have personal resilience and the ability to solve complex problems to effectively operate in a high tempo and dynamic environment with competing priorities

Application Closing Date: Thursday 14 December 2023

For further information please review the job information pack, reference JCG/11903/23 on https://defencecareers.nga.net.au/?jati=AACA41D8-2DCA-09AD-23F3-D2348BA73A01