Cyber Risk Analyst

vor 3 Wochen

Canberra, Österreich CYOS Solutions Vollzeit

Application closing date: Monday, 03 June 2024 • 11:59pm, Canberra time

Estimated start date: Monday, 01 July 2024

Location of work: ACT

Working arrangements: The work is to be performed at the offices of Services Australia in the respective city. Some remote working arrangements may be considered on a case to case basis.

Length of contract: 12 months

Contract extensions: 2x 12 months

Security clearance: Must have Negative Vetting Level 1

Rates: $100 - $120 per hour (inc. super)

The Cyber Uplift and Safety Program (CUSP) is focussed on improving the maturity of cyber controls and identifying and mitigating vulnerabilities in the environment. CUSP is seeking a Cyber Risk Analyst to collaborate with the CUSP team to assess enterprise risk. Risks need to be appropriately documented and communicated to influence effective change. Assessment of risks should align with the Essential Eight, Protective Security Policy Framework (PSPF) and the Agency's risk framework.

The Cyber Risk Analyst will be required to undertake work that is highly complex or sensitive and operate under broad direction. They will exercise a considerable degree of independence and perform in a leadership level role. The Cyber Risk Analyst will exercise sound decision making and judgement to produce high level risk and assurance advice.

The following experience and knowledge is required:

  • Extensive experience with risk and information security frameworks, policies and standards, including the Federal Government PSPF and Information Security Manual (ISM), and international standards (ISO 27001/2).

  • Think strategically with the aim to reduce impact of enterprise risks.

  • Demonstrated working experience in security threat and risk assessment and development of documentation.

  • Demonstrated security experience within complex ICT environments.

  • Strong stakeholder management skills, and the ability to communicate security concepts to non-technical audiences both verbally and in writing.

  • Current and up to date knowledge of common threats and vulnerabilities used by threat actors.

  • Ability to transfer knowledge and develop capability within the team.

  • Tertiary or other relevant qualifications are advantageous.

Key duties may include, but are not limited to:

  • Identify, test, and assess applicable security controls in line with the Australian Government PSPF, ISM and agency policies and guidelines.

  • Assess the impact of risk against Enterprise Risk tolerance.

  • Collaborate widely to ensure risk is assessed at an enterprise level and all plausible remediation activities are identified.

  • Analyse and document security risk and recommend treatments and modifications to security practices and procedures using expertise and technical knowledge.

  • Undertake security risk assessments on key technology components and identify areas for remediation and appropriate remediation controls.

  • Work with the existing team members to analyse the cyber risks identified within the broader risk and controls environment to inform an assessment of the risk exposure.

  • Undertake the categorisation and prioritisation of cyber risks (and associated remediation actions) identified.

  • Document risk assessments within Service Australia templates.

  • Facilitate discussions with system owners and technical leads around the risks identified and the appropriate remediations.

  • Manage, develop, and support complex relationships with stakeholders to achieve work area goals.

  • Assist with the development and implementation of security policies, procedures, projects, and strategies.

  • Continuously work to improve the efficiency and effectiveness of the cyber security service.

  • Share knowledge and skills to identify and develop capability within the team.

  • Educate and inform departmental staff to promote understanding and ensure adherence to security policy and processes.

Essential Criteria

  • Extensive demonstrated experience with risk and information security frameworks, policies, and standards, including the Federal Government Protective Security Policy Framework (PSPF) and Information Security Manual (ISM), Essential Eight and international standards (ISO 27001/2).

  • Experience analysing risks associated with cyber vulnerabilities, external perimeter technologies (firewall and gateway services specifically) of complex environments.

  • Ability to transfer knowledge and build capability within the team.

  • Ability to document and communicate risk exposure to executive staff effectively to influence necessary change.

Desirable Criteria

  • Experience undertaking enterprise level cyber risk analysis at large Government departments on highly complex technology environments.

  • Experience working with system owners and business stakeholders to develop appropriate remediation plans that take into account the underlying business functions and requirements.

  • Strong verbal and written communication skills with the ability to convey complex technical concepts to non-technical senior stakeholders.

  • Demonstrated ability to think critically and solve complex problems

  • Strong stakeholder management skills, and the ability to communicate security concepts to non-technical audiences both verbally and in writing.

  • Relevant tertiary or other qualifications.

  • Cyber Risk Analyst

    vor 2 Wochen

    Canberra, Österreich CYOS Solutions Vollzeit

    Application closing date: Monday, 03 June 2024 • 11:59pm, Canberra timeEstimated start date: Monday, 01 July 2024Location of work: ACTWorking arrangements: The work is to be performed at the offices of Services Australia in the respective city. Some remote working arrangements may be considered on a case to case basis.Length of contract: 12 monthsContract...

  • Cyber Risk Analyst

    vor 3 Wochen

    Canberra, Österreich CYOS Solutions Vollzeit

    Application closing date: Monday, 03 June 2024 • 11:59pm, Canberra time Estimated start date: Monday, 01 July 2024 Location of work: ACT Working arrangements: The work is to be performed at the offices of Services Australia in the respective city. Some remote working arrangements may be considered on a case to case basis. Length of contract: 12...

  • Cyber Risk Analyst

    vor 2 Wochen

    Canberra, Österreich CYOS Solutions Vollzeit

    Application closing date: Monday, 03 June 2024 • 11:59pm, Canberra time Estimated start date: Monday, 01 July 2024 Location of work: ACT Working arrangements: The work is to be performed at the offices of Services Australia in the respective city. Some remote working arrangements may be considered on a case to case basis. Length of contract: 12...

  • Senior Cyber Security Assurance and Risk Analyst

    vor 3 Wochen

    Canberra, Österreich Airservices Australia Vollzeit

    Senior Cyber Security Assurance and Risk AnalystSecurity (Information & Communication Technology)Government - Federal (Government & Defence)Full timeAdd expected salary to your profile for insightsFull time position for an experienced Senior Cyber Security Assurance and Risk Analyst to join the team at Airservices Australia.14% superannuation with flexible...

  • Senior Cyber Security Assurance and Risk Analyst

    vor 3 Wochen

    Canberra, Österreich Airservices Australia Vollzeit

    Senior Cyber Security Assurance and Risk Analyst Security (Information & Communication Technology)Government - Federal (Government & Defence) Full time Add expected salary to your profile for insights Full time position for an experienced Senior Cyber Security Assurance and Risk Analyst to join the team at Airservices Australia.14% superannuation...

  • Cyber Analyst

    vor 3 Wochen

    South Canberra, Österreich Quay Appointments Vollzeit

    Join a Cyber Security Team at a Federal Government Department!Are you ready to step into a dynamic role where your expertise in cyber security can shine? This Federal Government Department’s Cyber Engagement section is expanding and are on the lookout for skilled Cyber Analysts to join the team based in Canberra.Requirements:Experience: A minimum of 5...

  • Cyber Analyst

    vor 2 Wochen

    South Canberra, Österreich Quay Appointments Vollzeit

    Join a Cyber Security Team at a Federal Government Department!Are you ready to step into a dynamic role where your expertise in cyber security can shine? This Federal Government Department’s Cyber Engagement section is expanding and are on the lookout for skilled Cyber Analysts to join the team based in Canberra.Requirements:Experience: A minimum of 5...

  • Cyber Security Analyst

    vor 2 Wochen

    Canberra, Österreich Centorrino Technologies Vollzeit

    Canberra, Australian Capital Territory, Australia Centorrino Technologies Centorrino Technologies (CT) is a customer-obsessed, technology-focused and engineering-led IT services and solutions provider, based right here in Australia. View company page Are You Ready for an Exciting New Tech Challenge? Look no further than Centorrino Technologies!At...

  • Cyber Security Analyst

    vor 2 Monaten

    Canberra, Österreich Centorrino Technologies Vollzeit

    Canberra, Australian Capital Territory, Australia Centorrino Technologies Centorrino Technologies (CT) is a customer-obsessed, technology-focused and engineering-led IT services and solutions provider, based right here in Australia. View company page Are You Ready for an Exciting New Tech Challenge? Look no further than Centorrino Technologies!At...

  • Cyber Analyst

    vor 2 Monaten

    Canberra, Österreich Kirra Services Vollzeit

    Must be able to obtain Negative Vetting Level 1 Security clearance.The applicant must have knowledge and experience in:5 years’ experience conducting security risk assessments covering Azure Cloud, Legacy ICT systems and applications within a Governance Risk and Compliance role.Experience in reviewing and providing guidance on application and system...

  • Cyber Analyst

    vor 2 Monaten

    Canberra, Österreich Kirra Services Vollzeit

    Must be able to obtain Negative Vetting Level 1 Security clearance. The applicant must have knowledge and experience in: 5 years’ experience conducting security risk assessments covering Azure Cloud, Legacy ICT systems and applications within a Governance Risk and Compliance role.Experience in reviewing and providing guidance on application and...

  • Cyber Analyst

    vor 2 Wochen

    Canberra, Österreich Kirra Services Vollzeit

    Must be able to obtain Negative Vetting Level 1 Security clearance. The applicant must have knowledge and experience in: 5 years’ experience conducting security risk assessments covering Azure Cloud, Legacy ICT systems and applications within a Governance Risk and Compliance role.Experience in reviewing and providing guidance on application and...

  • Lead Analyst

    Vor 4 Tagen

    Canberra, Österreich CyberCX Vollzeit

    Lead Analyst - Cyber Intelligence (work from any major Australian city)You will advise on and help lead the strategic growth, development and operational activities of the Cyber Intelligence function. 13th June, 2024 At CyberCX we are building a uniquely Australia and New Zealand focused cyber intelligence capability. The Lead Cyber Intelligence Analyst is a...

  • Cyber Vulnerability and Threat Analyst

    vor 4 Wochen

    Canberra, Österreich Infinite Consulting Vollzeit

    12 month initial assignment starting late May2 x 12 month options to extendACT location with flexible working arrangements consideredOur Federal Government client has a requirement for the services of a Cyber Vulnerability and Threat Analyst to deliver threat and vulnerability assessments and associated tasks with business impact analysis.To Be Successful In...

  • Cyber Vulnerability and Threat Analyst

    vor 2 Monaten

    Canberra, Österreich Infinite Consulting Vollzeit

    12 month initial assignment starting late May2 x 12 month options to extendACT location with flexible working arrangements consideredOur Federal Government client has a requirement for the services of a Cyber Vulnerability and Threat Analyst to deliver threat and vulnerability assessments and associated tasks with business impact analysis. To be successful...

  • Cyber Vulnerability and Threat Analyst

    vor 2 Wochen

    Canberra, Österreich Infinite Consulting Vollzeit

    12 month initial assignment starting late May2 x 12 month options to extendACT location with flexible working arrangements consideredOur Federal Government client has a requirement for the services of a Cyber Vulnerability and Threat Analyst to deliver threat and vulnerability assessments and associated tasks with business impact analysis.To Be Successful In...

  • Cyber Security Analyst

    vor 1 Monat

    Canberra, Österreich Digital61 Vollzeit

    The Senior Cyber Security Analyst is responsible for monitoring customer SIEM incidents and alerts, as well as managing and performing minor configuration of security monitoring tools. They prioritise alerts or issues and perform initial triage to confirm a real security incident is taking place. They investigate alerts and incidents, performing deep...

  • SOC Analyst

    vor 2 Monaten

    Canberra, Österreich Risk Associates Pvt. Ltd. Vollzeit

    • Monitor and analyse security events and alerts using Sentinel SIEM platform.• Investigate and respond to security incidents in a timely manner.• Assist in the development and implementation of security policies and procedures.• Collaborate with other team members to identify and mitigate security risks.• Generate reports and documentation related...

  • SOC Analyst

    vor 2 Wochen

    Canberra, Österreich Risk Associates Pvt. Ltd. Vollzeit

    • Monitor and analyse security events and alerts using Sentinel SIEM platform.• Investigate and respond to security incidents in a timely manner.• Assist in the development and implementation of security policies and procedures.• Collaborate with other team members to identify and mitigate security risks.• Generate reports and documentation related...

  • Cyber Security Analyst Canberra, Australian Capital Territory Fixed Term Contract

    vor 2 Monaten

    Canberra, Österreich Arcps Vollzeit

     Requirements Utilise their skills and experience as Senior Cyber Security Analyst, working within a Security Operations Centre, to maintain and strengthen the Cyber Operations team’s security monitoring and incident response capability.Develop and document detection and alerting use cases specific to the Department’s IT environment and threat...