ASAP Start | Canberra Location

Initial contract until June 2024 with multiple extensions

NV1 clearance required

Summary:

FinXL is seeking, for its federal government client, the services of a level 3 System Security Assessor to compliment the internal certification team, to assess systems for service in the Current and Objectives Forces for certification and accreditation.

The project team will be tasked with formal security deliverables required to have IIP delivered systems accredited for introduction service, re-accreditation of in-service mission systems after major upgrade or design change, and accredit mission system innovations introduced into service outside of the IIP.

The candidate can expect to work on security certification and accreditation of a variety of systems, from standalone applications to complex deployable networks with gateway interfaces to national strategic and coalition networks. Principally these networks will be critical elements of capability to be delivered under the IIP, linked to projects within the program.

The key responsibilities include:

• Certification and security assessment: reviewing pre-certification documentation and assessing systems as per ICTSB requirements.
• As required, Conduct Pre-Certification activities, inclusive of producing technical and system-level security documentation.
• Mentor and assist the Level 2 Security Analysts in developing and understanding the accreditation process, including the reviewing of documentation prior to submission for accreditation.
• Activities to be undertaken ICT Certification and Accreditation Framework, and relevant Government policy including the Information Security Manual(ISM).
• Engage with internal staff to develop project or capability-specific security accreditation documentation, including the preparation for submission for endorsement and approval.
• Develop, support and maintain project frameworks, processes and engagement with key stakeholders.
• Attend workshops and actively participate to provide robust ICT security advice within information security and technical accreditation discussions.
• Report to, and undertake additional tasking from the assurance or deputy director of the section as required.
• Apply the APS code of conduct and principles of Equity and Diversity, Industrial Democracy and OH&S.

The successful applicant would be required to have:

• Hold relevant industry information systems security certifications, such as at least two certifications as per ASD Information Security Registered Assessors Program (IRAP) category A and B requirements.
• Experience with Defence ICT Security Branch certification and accreditation processes.
• Detailed understanding of the PSPF, ISM and DSPF.
• Extensive (at least five years) experience in ICT Information Security or ICT Security Architecture, preferably with deployable communications network systems
• IRAP certification, or have previous experience in the IRAP program.
• Recent experience in security assessments of ICT systems within Australian Government context.
• Experience in cloud certification and accreditation within an Australian Government context.
• Experience in ICT Security Risk Management and methodologies.

About the Company:

FinXL fosters a high-performing, inclusive workplace built on a foundation of excellence, respect and dignity. We take corporate social responsibility seriously through our ongoing activities with communities and staff involvement in these efforts. We are committed to environmentally friendly practices in both our own operations and our work with clients.

To be considered please send applications or contact Chins on 02 6243 6409 to discuss further.

FinXL does not accept unsolicited resumes or appreciate unsolicited calls from recruitment agencies.

FinXL encourages applications from Aboriginal and Torres Strait Islander people.