Location Canberra
Job type Contract
Salary Negotiable
Specialisation ICT, Technical, TSPV, Other
Contact person Cindace Prasad
Reference TR/062480
Call Email Cindace

RFQ-ASD-LH-02780 ICT Security Assessor

Due to the nature of clients we work with here at Kinexus and the projects these roles will be based on, an Australian Government Top Secret Positive Vetting (TSPV) clearance is essential.

These opportunities do not have the ability to obtain sponsorship for a security clearance (including applicants who currently hold a security clearance seeking to upgrade).

ABOUT THIS ROLE

The Cyber Security Assessor is part of a Cyber assessment team that is responsible for reviewing systems architecture, including security documentation, to assess the design and implementation effectiveness of security controls.

Estimated start date: Monday, 04 August 2025

Initial contract duration: 12 months

Extension term: 12 months

Number of extensions: 2

Location of work: ACT

Working arrangements: ACT, 5 days a week in the office. Candidates must be willing to undergo ASD's Organisational Suitability Assessment (OSA) prior to engagement. Candidates required to have PV clearance.

ABOUT THE COMPANY

Australian Signals Directorate (ASD) is the federal agency responsible for foreign signals intelligence, cyber warfare and information security. ASD's purpose is to defend Australia from global threats and help advance our national interests.

Situated in Canberra, ASD employs over 2000 TSPV cleared workers. ASD's workforce is growing rapidly. Areas of growth include PMO, cyber security, systems administration and engineering, software development and network engineering.

A top-security, complex and highly technical environment, ASD plays a vital role in the defence of Australia. Long contracts (12 months+) available.

JOB DUTIES AND RESPONSIBILITIES

  • Undertake complex technical assessment activities in information and cyber security.
  • Undertake objective systematic analysis and draw accurate conclusions based on evidence, providing detailed technical, operational, professional and procedural advice in relation to complex information and cyber security activities. These may include software development, system administration, incident response, cyber forensics, specialist electronics and engineering, mathematics and vulnerability analysis and research.
  • Work within a framework of legislation, established industry principles, work practices and procedures in accordance with ASD's mission and business objectives.
  • Represent ASD Trust & Assurance branch to Defence & Other Government Organisations' security stakeholders to ensure the TS ICT Authorisation Framework is applied in a consistent and coordinated fashion.
  • Liaise with multiple projects and capability stakeholders to assist in design and documentation of ICT system security controls. Identify relevant stakeholders' expectations and concerns to develop a clear understanding of the methodology and practices to achieve outcomes.
  • Define scope of the assessment, assess the security controls and produce security assessment reports in accordance with ISM and PSPF standards.
  • Develop assessment briefs and presentations for senior decision makers to support capability's authorisation to operate.
  • Contribute to enhancement of ICT security policy and documentation, and implement practices, technologies and governance.
  • Role will require some travel and may require some role-specific interstate travel.

TECHNICAL SKILLS

  • IRAP certified
  • At least 2 years' experience as a security specialist working across security architecture, security and risk management, communication and network security or security operations domains.
  • Experience ensuring technical systems adhere to Essential Eight, ISM, and PSPF frameworks.
  • Proven ability to communicate complex technical systems to non-technical audiences.
  • Excellent organisational and communication skills.
  • Proven record building, managing, and enhancing relationships with stakeholders.
  • Experience developing, managing, and implementing SOPs and procedures in support of security accreditation frameworks.

SKILLS & EXPERIENCE NEEDED

Essential criteria

  • SCTY 5: Provides advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards. Obtains and acts on vulnerability information and conducts security risk assessments, business impact analysis and accreditation on complex information systems. Investigates major breaches of security, and recommends appropriate control improvements. Contributes to development of information security policy, standards and guidelines.
  • INAS 5: Interprets information assurance and security policies and applies these in order to manage risks. Provides advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines. Uses testing to support information assurance. Contributes to the development of policies, standards and guidelines.
  • BURM 5: Plans and implements complex and substantial risk management activities within a specific function, technical area, project or programme. Implements consistent and reliable risk management processes and reporting to key stakeholders. Engages specialists and domain experts as necessary. Advises on the organisation's approach to risk management.
  • PRGM 5: Takes full responsibility for the definition, approach, facilitation and satisfactory completion of medium-scale projects. Provides effective leadership to the project team. Adopts appropriate project management methods and tools. Manages the change control process and assesses and manages risks. Ensures that realistic project plans are maintained and delivers regular and accurate communication to stakeholders. Ensures project and product quality reviews occur on schedule and according to procedure. Ensures that project deliverables are completed within agreed cost, timescale and resource budgets, and are formally accepted, by appropriate stakeholders. Monitors costs, times, quality and resources used and takes action where performance deviates from agreed tolerances.

Desirable criteria

  • Advises on the available standards, methods, tools and applications relevant to own specialism and can make appropriate choices from alternatives. Analyses, designs, plans, executes and evaluates work to time, cost and quality targets. Assesses and evaluates risk. Communicates effectively, both formally and informally. Demonstrates leadership. Facilitates collaboration between stakeholders who have diverse objectives. Takes all requirements into account when making proposals. Takes initiative to keep skills up to date. Mentors colleagues. Maintains an awareness of developments in the industry. Analyses requirements and advises on scope and options for continuous operational improvement. Demonstrates creativity, innovation and ethical thinking in applying solutions for the benefit of the customer/stakeholder.
  • Influences organisation, customers, suppliers, partners and peers on the contribution of own specialism. Builds appropriate and effective business relationships. Makes decisions which impact the success of assigned work, i.e. results, deadlines and budget. Has significant influence over the allocation and management of resources appropriate to given assignments.

BENEFITS

Why work for ASD?

  • Work on interesting and prestigious projects vital to the ongoing defence of Australia.
  • Flexible work environment; work the hours that suit you between 7am and 7pm.
  • Low attrition rate: the great variety of projects and opportunities across different business areas ensure few workers leave ASD.
  • Long contracts available.
  • Fantastic growth opportunities available at any stage of your career.

Why Kinexus?

  • Kinexus has been supplying TSPV contractors to government panels since 2004 and have a strong relationship with them. We are one of just 9 suppliers Australia-wide.
  • Our experience in managing contractors in defence/national security industries means we understand the requirements from the Commonwealth, insurances and clearances.
  • DISP accredited; we can hold clearances and manage renewals.
  • Dedicated account manager (me!) who is your dedicated POC and offer continuous contractor care.
  • Rate negotiation guidance in line with the SFIA framework.
  • Dedicated payroll assistant who facilitates your taxes and super.
  • We proactively chase timesheet approvers to ensure you get paid on-time and error free.
  • Regular visits to Canberra for coffee, lunches and quarterly drinks events.
  • We can facilitate novated car leases, LAFHA or salary sacrifice.
  • We'll keep you up to date with the most appropriate, interesting opportunities in your field.
  • Community matters. Kinexus supports women in Defence through our female mentoring program and rewards referrers through our Referral Rewards scheme.
  • Support for your health and wellness through counselling support (EAP) available for all contractors and their families.

Kinexus is the leading recruitment partner to the defence industry in Australia. We support our community in making intelligent connections and create opportunities to help grow careers.

All applications should include your resume as a word document. For more information, visit our website, www.kinexus.com.au or contact Cindace Prasad at 0449 511 324. #LI-CP