Cyber Security Risk Analyst
- Full-time
- Job Type: Permanent
Company Description
At Leidos, we deliver practical solutions to the Federal Government’s most complex IT engineering problems. And, as a Prime Systems Integrator, these are often on a scale and variety rarely seen by other organisations. Whether developing and supporting technology transformation projects for the Bureau of Meteorology, providing software applications for critical Defence missions, or improving the way the ATO supports its service delivery, our work has a direct impact on the lives of Australians, and will certainly impact on your career.
Job Description
We have a great opportunity to join a highly motivated and dedicated team of cyber professionals providing a leading cyber security capability for the environments that our deployed military personnel rely on. This role enables you to utilise your broad experience in a supportive team environment, learn new technologies in the cyber security space and interact with highly technical peers, partners and customer personnel.
Your New Role
As a Cyber Security Risk Analyst, you will be responsible for conducting proactive risk management activities including the delivery of high-quality, comprehensive risk assessments, discovery and analysis, as well as tracking and reporting. This is an interesting role with broad responsibilities and scope that will allow you to test and hone your skills, whilst contributing to National Security, your responsibilities will include the following;
- Lead and undertake the timely delivery of cyber security risk analysis and advisory services to stakeholders and the broader team.
- Prioritisation and presentation of identified risks and recommendations at the relevant forums.
- Proactive maintenance of the risk register and tracking of risk response progress.
- Ongoing oversight, measuring, and monitoring of security risk across multiple complex environments.
- Evaluation of the effectiveness of security controls against the Australian Government ISM, Essential 8, NIST, other approved cyber security frameworks, and standard designs.
- Development and submission of high-quality artefacts including risk assessments and reports.
- Practical application of cyber security governance, risk, and compliance principles and frameworks.
- Continuous improvement of risk management processes and service delivery.
- Mentoring of staff.
- Security and compliance auditing.
- Documentation and record management.
Qualifications
Coupled with your education and/or practical experience you will be customer-focused and motivated to deliver outcomes that meet customer mission needs. In addition, you will demonstrate the following knowledge and skills;
- 3+ years experience in a similar role working in a complex environment.
- Experience in risk management and completing risk assessments.
- Proven experience in writing high quality risk assessment documentation.
- Familiarity with risk management frameworks such as ISO31000, FAIR, OCTAVE, and NIST RMF.
- Certification such as CRISC, CISM, CISA, CISSP, ISO27001 or similar will be viewed favourably
- Proven leadership and problem solving abilities.
- Excellent communication and stakeholder management skills.
- Strong attention to detail and sound organisational skills.
- Experience working with Defence is desirable.
Additional Information
At Leidos, you will be valued, included, and supported. So, if you are open-minded and keen to be the difference, we look forward to welcoming you.
The successful candidate may need to meet International Traffic in Arms Regulations (ITAR) requirements applicable to this role, and your nationality may be a factor in determining your suitability for this role.
Successful candidates will be required to be Australian Citizens and hold and maintain an NV-2 Australian Government Security Clearance. Applicants with a current NV1 who are willing to upgrade will be considered.