Application closing date: Friday, 04 October 2024 • 11:59pm, Canberra time (in Canberra) Estimated start date: Friday, 01 November 2024 Location of work: QLD Working arrangements : Candidates must work from Services Australia's offices a minimum of 2 days per week.
Length of contract: 12 Months Contract extensions: 2 x 12 months Security clearance: Must have Negative Vetting Level 1 Rates: $100 - $120 per hour (inc. super) The Cyber Secrets Management project is focused on implementation and agency adoption of a secrets management solution (HashiCorp Vault) to increase cyber security capability and reduce enterprise risk.
The project is seeking a technical Senior Systems Analyst with cyber security specialisation.
The role focuses on engagement with potential technical and non-technical consumers to analyse their current secrets management practices and evaluate and design integration solution proposals using HashiCorp Vault to meet their business needs.
The resource will be closely working with the Engagement Lead, Technical Lead, and project management staff within the internal team to articulate design requirements to feed into the engineering backlog of work.
The Senior Systems Analyst will be required to undertake work that is highly complex or sensitive and operate under broad direction.
They will exercise a considerable degree of independence.
Given the nature of the role and technology, the resource should have significant technical experience with a broad range of technologies and experience working with different applications development and infrastructure teams.
The following experience and knowledge are required: Technical systems analyst experience working across a broad range of capabilities such as Applications, Infrastructure, Security, Integration, DevSecOps, CI/CD. Demonstrated systems analyst experience working with a Secrets Management Solution within complex ICT environments.
Preferably HashiCorp Vault. Understanding of credential usage in a complex ICT environment, risks relating to the compromise of credentials, and techniques to mitigate risks. Experience supporting delivery of Cyber security capability in a System Analyst role.
Strong stakeholder management skills, and the ability to communicate security concepts to non-technical audiences both verbally and in writing. Strong system documentation skills, including specifications and business process mapping. Ability to transfer knowledge and develop capability within the team. Tertiary or other relevant qualifications are advantageous (e.g.
CompTIA Security+, ISC2 CISSP).
Key duties may include, but are not limited to: Perform detailed analysis and evaluation of business processes and requirements Create solution designs and implement solutions to meet business needs.
Create and maintain solution documents.
Support daily operations and monitor performance of business solutions.
Adhere to delivery and support methodologies and contribute ideas for improvement.
Perform detailed technical application assessments considering feasibility, resource effort, risks and benefits.
Conduct testing activities such as test planning, execution coverage reviews and defect management.
Collaborate with stakeholders to define tasks, resolve issues, solve problems and ensure effective and timely implementation of projects.
Undertake project quality management tasks such as peer and quality reviews of specifications, design and testing documents.
Review research, process models and documentation of other staff, providing guidance and feedback.
Resolve or escalate issues as required and suggest alternative approaches and solutions.
Perform cost analysis activities as required.
Manage the life cycle of changes and improvements to systems.
Contribute towards team performance and engagement through coaching capability development set priorities, manage resources, and assist with the development of work plans exercise delegations in line with legislation and guidelines as required.
Primary Technologies.
HashiCorp Vault, CompTIA Security+ or ISC2 CISSP Essential Criteria Demonstrated Systems Analyst experience working with a secrets management solution within complex ICT environments - preferably HashiCorp Vault.
Response should consider experience with secrets managements concepts such as authentication methods, system integrations and configuration of a secrets management solution to support stakeholder needs.
Demonstrated technical Systems Analyst experience working across a broad range of capabilities, such as DevSecOps, CI/CD, Applications, Infrastructure, Security, Integration.
Desirable Criteria Demonstrated Systems Analyst experience working with a secrets management solution within complex ICT environments - preferably HashiCorp Vault.
Response should consider experience with secrets managements concepts such as authentication methods, system integrations and configuration of a secrets management solution to support stakeholder needs.
Demonstrated technical Systems Analyst experience working across a broad range of capabilities, such as DevSecOps, CI/CD, Applications, Infrastructure, Security, Integration.
Demonstrated understanding of credential usage in a complex ICT environment, identifying risks relating to the compromise of credentials, and working with stakeholders to propose and implement solutions to mitigate risks.
Demonstrated experience working with technical and non-technical stakeholders to elicit requirements and support them to adopt a capability or product.
Response should consider approach to working with teams onboarding the capability/product as well as best practices and lessons learned from prior implementations.
Demonstrated experience developing and documenting system specifications and modelling (e.g.
UML and BPMN) in consultation with technical stakeholders.
Services Australia has a complex ICT environment.
Please describe your strategy to quickly upskill in our environment, technologies and projects.
