Cyber Engineer

Indigitise Pty Ltd


Job Location:

Canberra - Australia

Monthly Salary: Not Disclosed
Posted on: 5 days ago
Vacancies: 1 Vacancy

Job Summary

a. Assessment and Authorisation:
1) Provide System Assessment and Authorisation activities as directed by the CDT Engineering Manager.
2) Conduct system Assessment and Authorisation activities in accordance with:
a) ASD Information Security Manual (ISM)
b) Protective Security Policy Framework (PSPF)
c) Defence Security Policy Framework
d) Cyber Security Assessment and Authorisation (CSAA) Charter assessment methodology templates and guidance.

3) Perform security assessments using Operational Effectiveness Reviews (OER) as the default approach with Design Effectiveness Reviews (DER) conducted where justified.
4) Audit the effectiveness of system security controls implemented across CDT capability systems.
5) Develop and deliver assessment artefacts including:
a) Security Assessment Reports (SAR) b) ATO briefs c) Risk statements and recommended remediation actions.

b. Risk Identification and Analysis: 1) Identify analyse evaluate and escalate cyber security and business risks
2) Identify and assess vulnerabilities associated with:
a) Security exceptions
b) Software defects
c) Architecture or design weaknesses
3) Assess system security architecture and services using structured threat modelling methodologies.
4) Protect the Confidentiality Integrity and Availability (CIA) of Defence information and systems Governance Compliance and Assurance.
5) Review system security documentation policies and procedures to ensure alignment with Defence and Australian Government requirements.
6) Ensure system compliance with mandatory cyber security requirements.
7) Support configuration governance processes including the Change Control Boards (CCB) and provide assessment input with risks mitigations and options for the Executive Authority (EA) to accept.
c. Advisory and Stakeholder Engagement:
1) Provide cyber security advice within the defined assessor scope of the CDT.
2) Support CDT in understanding and mitigating cyber security risks impacting capability delivery and operations within the BTN and TCN environments.
3) Build and maintain effective working relationships with:
a) Applicable sustainment products (e.g. CA31);
b) L4140 Integrated delivery teams (Integration Delivery Team and BMS Delivery Team); and
c) Operational and security stakeholders.

Requirements

1. The following requirements of this position are considered fundamental to the position:
a) Demonstrated qualifications and/or professional experience assessed as suitable for eligibility to obtain DCIAB CSAA endorsement as a Cyber Security Assessor including (but not limited to) CISSP CISM ISO 27001 Lead Auditor and IRAP accreditation;
b) Knowledge/experience of radio and satellite communication systems/applications and/or Defence specific systems/applications;
c) Ability to work in a team; d
) Understanding of modern networking computers and operating systems; and
e) Demonstrated ability to produce high-quality technical reports.


Desired Experience / Skills Sought:
1. The following requirements of this position are considered desirable for the position(s):

a) Extensive industry and specialty experience in Cybersecurity within communications (radio and satellite);

b) Strong understanding of ICT architectures networks platforms cyber/security compliance and governance within the Defence environment;
c) Comprehensive understanding of Defence systems including C4 capabilities;
d) Previous Defence Army or CASG experience;
e) Experience in assessing and evaluating risk; and
f) Demonstrates creativity and innovation in applying solutions for the benefit of the customer/stakeholder.




Required Skills:

1. Experience in Salesforce Vlocity platform using specifically Apex LWC Ominiscripts Flexcards. Integration procedure and DataRaptors. 2. Experience working with OOP frameworks & design patterns. 3. Experience in building and working with integration (example REST APIs Platform Events). 4. Platform Developer I Platform Developer II Ominstudio Developer certified. 5. Experience in Salesforce Sales Cloud Service Cloud Community Cloud Health Cloud implementations. 6. Experience working with Source Control tools (e.g. GitLab) & package-based development


Required Education:

Bachelors

a. Assessment and Authorisation: 1) Provide System Assessment and Authorisation activities as directed by the CDT Engineering Manager. 2) Conduct system Assessment and Authorisation activities in accordance with: a) ASD Information Security Manual (ISM) b) Protective Security Policy Framework (PSPF)...

About Company

Company Logo

Indigitise is a leading professional services enterprise with a strong presence across Australia, specializing in IT consulting, IT services, and digital transformation solutions. Our team has extensive experience providing innovative and effective IT solutions to the Commonwealth Gov ... View more

View Profile View Profile