ASD 4, 5, 6 & EL1 Lead Security Engineers
Full timeSalary Package: $77,787 - $133,322 (plus Super)ASD is entering an exciting phase of growth, innovation and transformation. Our agency has committed to delivering REDSPICE , which is the most significant single investment in the Australian Signals Directorate’s 75 years.Beyond being part of a great team and having the opportunity to work across a range of technologies and challenges, ASD also provides benefits including:An additional allowance of 4% on top of substantive salary which is superannuablePerformance-based pay increasesInitiatives to recognise specific skills which may attract additional remuneration upon successful application.Positions that may attract Relocation Assistance.Promotion opportunities and pathwaysFlexible working arrangementsGenerous support for training and developmentThe RoleASD is seeking highly motivated ASD4, 5, 6 & EL1 Security Engineers from all backgrounds with experience in various forms of Security Engineering.You will play a pivotal role in ensuring ASD’s security systems are effectively maintained through implementing and testing new security features, planning computer and network upgrades, troubleshooting, and responding to security incidents.ASD 4 Security Engineer:Assist users in defining their access rights and privileges and operate within agreed access controls and security systems.Administer and maintain specific security policies including local risk assessments to maintain confidentiality, integrity, availability of information and enhanced resilience to unauthorised access.Acquire and apply skills in risk analysis relating to information security.Communicate and disseminate moderately complex security scenarios in a clear concise manner relevant to all levels of the Group or Service.Recognise when an IT incident has occurred and report accordingly and take immediate action to limit damage.Establish and take action when security issues should be escalated to a higher level.Configure, troubleshoot and maintain security infrastructure software and hardwareDeliver risk assessments, business impact analysis and assurance for information systems within the organisationAnalyse security risks and business impacts and provide guidance on security strategies to manage identified risksMaintain knowledge, skills and experience of general security issues and apply to IT security risk analysisEngage with internal and external stakeholders from other technical specialties to implement access rulesInterpret security policy and contribute to the development of standards and guidelinesUnderstand and assist in the maintenance and enhancement of firewalls.ASD5 Security Engineer:Participate in the conduct of security risk assessments and provide advice and guidance on the application and operation of security controls.Perform risk and security control assessments as required by Defence policy to maintain confidentiality, integrity, availability of information systems and enhance business outcomes.Use experience to explain systems security and the strengths and weaknesses that are relevant across Defence.Understand and explain policy relating to IT security.Communicate and provide authoritative advice and guidance on strategies to manage identified risk.Analyse and reports identified security incidents in accordance with established procedures and recommend any required actions.Assist with the application and compliance of security controls and review information systems for actual or potential security vulnerabilities.Produce concise technical systems documentation and knowledge artefacts supporting design and operational continuity.Understand and contribute to the maintenance and enhancement of firewalls and apply these attributes to protect the networks and capabilities of ASD.ASD6 Senior Security Engineer:Accountable to conduct security risk assessment and provide advice and guidance on the application and operation of procedural security controls.Responsible for ensuring that all identified breaches in information security are promptly managed according to Defence policies and procedures.Understand the security features and capabilities of current Defence and industry accepted hardware and software products and provide advice to stakeholders.Use experience to explain systems security and the strengths and weaknesses that are relevant across Defence.Tailor communication style and language to provide guidance on security strategies to manage identified risks.Facilitate appropriate direction for the team by clearly communicating goals and objectives.Analyse and resolve identified security incidents in accordance with established procedures and recommend any required actions.Lead the application and compliance of security operations procedures and review information systems for actual or potential breaches in security.Produce concise technical systems documentation and knowledge artefacts supporting design and operational continuity.Work with firewalls, committing to continually enhance knowledge and skill in this field, and apply these attributes to protect the networks and capabilities of ASD.EL1 Lead Security Engineer:Accountable for managing allocated resources, setting work priorities and managing workflows to ensure accurate completion of work within timeframes and quality requirements.Accountable for accurate completion of work within timeframes and quality requirements, sharing own expertise with others and guiding and mentoring less experienced employees.Lead the development and implementation of strategies and the evaluation of business outcomes to ensure continuous improvement in the delivery of ICT security.Deliver risk assessments, business impact analysis and assurance for information systems within the organisation.Analyse security risks and business impacts and provide guidance on security strategies to manage identified risks.Maintain knowledge, skills and experience of general security issues and apply to IT security risk analysis.Engage with internal and external stakeholders from other technical specialties to share and develop ICT security policy.Lead the application and compliance of security operations procedures and review information systems for actual or potential security controls to achieve Authority to Operate accreditation.Negotiate with ICT engineers and ICT Security in the development and approval of Concept of Operations, System Security Plans and Executive briefs to achieve an Authority to Operate accreditation.Our Ideal CandidateASD4 and 5 Security EngineersOur Ideal candidate should have possess one or more of the following traits and skills for a Security Engineer:Industry experience, formal training or a particular domain expertiseUnderstanding of the architecture, administration and management of operating systems like Linux and Windows, and as appropriate, the nuances of differing firewallsA proactive security mindsetSecurity engineering knowledge and experience to identify risks and uncertainties and consider these in planning, decision-making and priority settingAbility to tailor their communication style to effectively engage various audiencesCapacity to be work flexibly, independently and within the team.ASD6 Senior Security EngineersIndustry experience, formal training or a particular domain expertiseA deep understanding of the architecture, administration and management of operating systems like Linux and Windows, and as appropriate, the nuances of differing firewallsAbility to exercise considerable degree of independence and perform a leadership roleAbility to apply security engineer knowledge and experience to assess risks and uncertainties and consider these in planning, decision-making and priority settingCan perform critical and complex security engineering activities and provide advice under limited direction to relevant stakeholdersProduces concise technical documentation and knowledge artefacts supporting operational continuityPerforms critical and complex network security activities and provide advice in the field of network security under limited direction to both technical and non-technical stakeholdersAbility to use technical knowledge and leadership to direct and develop junior staffAbility to tailor their communication style to effectively engage various audiences.EL1 Lead Security Engineer:Our ideal candidate will have a proactive security mindset, and possess two or more of the following traits and skills for a Lead Security Engineer:Industry experience, formal training or a particular domain expertiseA deep understanding of the architecture, administration and management of operating systems like Linux and WindowsAs appropriate, have a deep understanding of firewalls and the nuances and benefits of differing firewallsAbility to design and implement enterprise solutions in AWS or AzureProficiency in configuring centralised audit, SIEM and SOAR capabilitiesDemonstrated experience authoring and ensuring compliance with cloud policyExperience in directing teams and developing junior staffAbility to communicate with both technical and non-technical people using varied communication styles to effectively engage with a range of audiencesSecurity engineering knowledge and experience to assess risks and uncertainties and consider these in planning, decision-making and priority setting for the teamWill drive solutions to overcome the security risks and business impactsAs part of ASD’s technical leadership groups, our ideal candidate will provide leadership, technical and planning knowledge and experience, ensuring the overarching security architecture meets business objectives and requirements.ASD is seeking applicants to fill current and anticipated vacancies and to create a merit pool for future vacancies.Application Closing Date: Sunday 14 July, 2024For further information please review the job information pack, reference
ASD/05542/24 (ASD 4, 5, 6) or ASD/05540/24
(EL1) on https://www.asd.gov.au/careersReport this job advert
Don’t provide your bank or credit card details when applying for jobs.
#J-18808-Ljbffr
