Asd 4, 5, 6 & El1 Lead Security Engineers

ASD 4, 5, 6 & EL1 Lead Security Engineers ASD 4, 5, 6 & EL1 Lead Security Engineers Full time
Salary Package: $77,787 - $133,322 (plus Super)
ASD is entering an exciting phase of growth, innovation and transformation. Our agency has committed to delivering REDSPICE , which is the most significant single investment in the Australian Signals Directorate's 75 years.
Beyond being part of a great team and having the opportunity to work across a range of technologies and challenges, ASD also provides benefits including:
An additional allowance of 4% on top of substantive salary which is superannuable
Performance-based pay increases
Initiatives to recognise specific skills which may attract additional remuneration upon successful application.
Positions that may attract Relocation Assistance.
Promotion opportunities and pathways
Flexible working arrangements
Generous support for training and development
The Role
ASD is seeking highly motivated ASD4, 5, 6 & EL1 Security Engineers from all backgrounds with experience in various forms of Security Engineering.
You will play a pivotal role in ensuring ASD's security systems are effectively maintained through implementing and testing new security features, planning computer and network upgrades, troubleshooting, and responding to security incidents.
ASD 4 Security Engineer:
Assist users in defining their access rights and privileges and operate within agreed access controls and security systems.
Administer and maintain specific security policies including local risk assessments to maintain confidentiality, integrity, availability of information and enhanced resilience to unauthorised access.
Acquire and apply skills in risk analysis relating to information security.
Communicate and disseminate moderately complex security scenarios in a clear concise manner relevant to all levels of the Group or Service.
Recognise when an IT incident has occurred and report accordingly and take immediate action to limit damage.
Establish and take action when security issues should be escalated to a higher level.
Configure, troubleshoot and maintain security infrastructure software and hardware
Deliver risk assessments, business impact analysis and assurance for information systems within the organisation
Analyse security risks and business impacts and provide guidance on security strategies to manage identified risks
Maintain knowledge, skills and experience of general security issues and apply to IT security risk analysis
Engage with internal and external stakeholders from other technical specialties to implement access rules
Interpret security policy and contribute to the development of standards and guidelines
Understand and assist in the maintenance and enhancement of firewalls.
ASD5 Security Engineer:
Participate in the conduct of security risk assessments and provide advice and guidance on the application and operation of security controls.
Perform risk and security control assessments as required by Defence policy to maintain confidentiality, integrity, availability of information systems and enhance business outcomes.
Use experience to explain systems security and the strengths and weaknesses that are relevant across Defence.
Understand and explain policy relating to IT security.
Communicate and provide authoritative advice and guidance on strategies to manage identified risk.
Analyse and reports identified security incidents in accordance with established procedures and recommend any required actions.
Assist with the application and compliance of security controls and review information systems for actual or potential security vulnerabilities.
Produce concise technical systems documentation and knowledge artefacts supporting design and operational continuity.
Understand and contribute to the maintenance and enhancement of firewalls and apply these attributes to protect the networks and capabilities of ASD.
ASD6 Senior Security Engineer:
Accountable to conduct security risk assessment and provide advice and guidance on the application and operation of procedural security controls.
Responsible for ensuring that all identified breaches in information security are promptly managed according to Defence policies and procedures.
Understand the security features and capabilities of current Defence and industry accepted hardware and software products and provide advice to stakeholders.
Use experience to explain systems security and the strengths and weaknesses that are relevant across Defence.
Tailor communication style and language to provide guidance on security strategies to manage identified risks.
Facilitate appropriate direction for the team by clearly communicating goals and objectives.
Analyse and resolve identified security incidents in accordance with established procedures and recommend any required actions.
Lead the application and compliance of security operations procedures and review information systems for actual or potential breaches in security.
Produce concise technical systems documentation and knowledge artefacts supporting design and operational continuity.
Work with firewalls, committing to continually enhance knowledge and skill in this field, and apply these attributes to protect the networks and capabilities of ASD.
EL1 Lead Security Engineer:
Accountable for managing allocated resources, setting work priorities and managing workflows to ensure accurate completion of work within timeframes and quality requirements.
Accountable for accurate completion of work within timeframes and quality requirements, sharing own expertise with others and guiding and mentoring less experienced employees.
Lead the development and implementation of strategies and the evaluation of business outcomes to ensure continuous improvement in the delivery of ICT security.
Deliver risk assessments, business impact analysis and assurance for information systems within the organisation.
Analyse security risks and business impacts and provide guidance on security strategies to manage identified risks.
Maintain knowledge, skills and experience of general security issues and apply to IT security risk analysis.
Engage with internal and external stakeholders from other technical specialties to share and develop ICT security policy.
Lead the application and compliance of security operations procedures and review information systems for actual or potential security controls to achieve Authority to Operate accreditation.
Negotiate with ICT engineers and ICT Security in the development and approval of Concept of Operations, System Security Plans and Executive briefs to achieve an Authority to Operate accreditation.
Our Ideal Candidate
ASD4 and 5 Security Engineers
Our Ideal candidate should have possess one or more of the following traits and skills for a Security Engineer:
Industry experience, formal training or a particular domain expertise
Understanding of the architecture, administration and management of operating systems like Linux and Windows, and as appropriate, the nuances of differing firewalls
A proactive security mindset
Security engineering knowledge and experience to identify risks and uncertainties and consider these in planning, decision-making and priority setting
Ability to tailor their communication style to effectively engage various audiences
Capacity to be work flexibly, independently and within the team.
ASD6 Senior Security Engineers
Industry experience, formal training or a particular domain expertise
A deep understanding of the architecture, administration and management of operating systems like Linux and Windows, and as appropriate, the nuances of differing firewalls
Ability to exercise considerable degree of independence and perform a leadership role
Ability to apply security engineer knowledge and experience to assess risks and uncertainties and consider these in planning, decision-making and priority setting
Can perform critical and complex security engineering activities and provide advice under limited direction to relevant stakeholders
Produces concise technical documentation and knowledge artefacts supporting operational continuity
Performs critical and complex network security activities and provide advice in the field of network security under limited direction to both technical and non-technical stakeholders
Ability to use technical knowledge and leadership to direct and develop junior staff
Ability to tailor their communication style to effectively engage various audiences.
EL1 Lead Security Engineer:
Our ideal candidate will have a proactive security mindset, and possess two or more of the following traits and skills for a Lead Security Engineer:
Industry experience, formal training or a particular domain expertise
A deep understanding of the architecture, administration and management of operating systems like Linux and Windows
As appropriate, have a deep understanding of firewalls and the nuances and benefits of differing firewalls
Ability to design and implement enterprise solutions in AWS or Azure
Proficiency in configuring centralised audit, SIEM and SOAR capabilities
Demonstrated experience authoring and ensuring compliance with cloud policy
Experience in directing teams and developing junior staff
Ability to communicate with both technical and non-technical people using varied communication styles to effectively engage with a range of audiences
Security engineering knowledge and experience to assess risks and uncertainties and consider these in planning, decision-making and priority setting for the team
Will drive solutions to overcome the security risks and business impacts
As part of ASD's technical leadership groups, our ideal candidate will provide leadership, technical and planning knowledge and experience, ensuring the overarching security architecture meets business objectives and requirements.
ASD is seeking applicants to fill current and anticipated vacancies and to create a merit pool for future vacancies.
Application Closing Date: Sunday 14 July, 2024
For further information please review the job information pack, reference ASD/05542/24 (ASD 4, 5, 6) or ASD/05540/24  (EL1) on https://www.asd.gov.au/careers
Report this job advert Don't provide your bank or credit card details when applying for jobs.

#J-18808-Ljbffr