Cyber Security Risk Analyst Lead

We have a great opportunity to join a highly motivated and dedicated team of cyber professionals providing a leading cyber security capability for the environments that our deployed military personnel rely on. This role enables you to utilise your broad experience in a supportive team environment, learn new technologies in the cyber security space and interact with highly technical peers, partners and customer personnel.

Your New Role

As a Cyber Security Risk Analyst Lead, you will be responsible for conducting proactive risk management activities including the delivery of high-quality, comprehensive risk assessments, discovery and analysis, as well as tracking and reporting. This is an interesting role with broad responsibilities and scope that will allow you to test and hone your skills, whilst contributing to National Security, your responsibilities will include the following;

• Lead and undertake the timely delivery of cyber security risk analysis and advisory services to stakeholders and the broader team.
• Prioritisation and presentation of identified risks and recommendations at the relevant forums.
• Proactive maintenance of the risk register and tracking of risk response progress.
• Ongoing oversight, measuring, and monitoring of security risk across multiple complex environments.
• Evaluation of the effectiveness of security controls against the Australian Government ISM, Essential 8, NIST, other approved cyber security frameworks, and standard designs.
• Development and submission of high-quality artefacts including risk assessments and reports.
• Practical application of cyber security governance, risk, and compliance principles and frameworks.
• Continuous improvement of risk management processes and service delivery.
• Mentoring of staff.
• Security and compliance auditing.
• Documentation and record management.

Requirements

Coupled with your education and/or practical experience you will be customer-focused and motivated to deliver outcomes that meet customer mission needs. In addition, you will demonstrate the following knowledge and skills;

• 3+ years experience in a similar role working in a complex environment.
• Experience in risk management and completing risk assessments.
• Proven experience in writing high quality risk assessment documentation.
• Familiarity with risk management frameworks such as ISO31000, FAIR, OCTAVE, and NIST RMF.
• Certification such as CRISC, CISM, CISA, CISSP, ISO27001 or similar will be viewed favourably
• Proven leadership and problem solving abilities.
• Excellent communication and stakeholder management skills.
• Strong attention to detail and sound organisational skills.
• Experience working with Defence is desirable.