Location of work: ACT, VIC, WA Length of contract: 18 months Contract extensions: 1 x 18 months Candidate must be an Australian Citizen - Must be able to obtain Negative Vetting Level 1 Key duties and responsibilities - Transforming agency cyber security risk management practices and policies to better enhance management of cyber security risk aligned to ISO 31000 and other better-practice risk frameworks - Continue the transformation from a compliance-based security model to a better-practice cyber security risk model aligned to business objectives - Aligning cyber security risk management practices across risk identification, analysis and evaluation to enhance outcomes - Advising in how they can build and embed cyber resilience within people, process, technology and third parties through agile and innovative Risk Management, Disaster Recovery and Business Continuity - Working with key stakeholders, design agency disaster recovery solutions for worst case cyber security scenarios, including working with technology vendors, documenting recovery processes, and testing/exercising recovery methods - Lead cyber resilience assessments; operational and service management processes; technical architecture, data resilience, testing and failover automation activities Candidate must provide a one page pitch to address all criteria specified. This is equal to 5000 characters. - Please tell us about your understanding of the role and describe how your knowledge, skills and experience will enable you to fulfil the role requirements. - Please demonstrate prior experience and provide examples.
