Job Description Cyber Security Engineer This exciting role is with a major government client. It demands a passionate cybersecurity professional with a proven track record in successfully guiding and supporting organisations through an iRAP or Authority to Operate assessment processes. The successful candidate will bring deep expertise in developing and guiding the creation of essential security documentation, including the Security Risk Management Plan (SRMP), System Security Plan (SSP), and SSP-A. The successful candidate will be the key driver in translating and operationalising assessment recommendations, organisational advisories and blueprints. You will guide implementation of solutions from a cybersecurity perspective, ensuring compliance to rigorous regulatory and compliance mandates to effectively safeguard our digital assets. Essential Criteria Security Clearance: Minimum NV1 Contract Duration: 24 months Experience: Minimum of 5-10 years experience in cybersecurity operations, including incident response, threat intelligence, and vulnerability management. Proven experience in GRC framework implementation and management. Background in developing and maintaining security documentation. Demonstrated ability to conduct risk assessments and develop effective mitigation strategies. Skills: Exceptional analytical and problem-solving abilities Strong understanding of IT systems and networks. Excellent written and verbal communication skills. Ability to work effectively under pressure and manage multiple priorities. Proficiency in relevant cybersecurity tools and technologies. Desirable Criteria: Certifications in cybersecurity (e.g., CISSP, CISM, CISA). Experience in government or large enterprise. Knowledge of scripting and automation tools. Key Responsibilities: Oversee day-to-day cybersecurity operations, including incident response and threat management Implement and maintain GRC frameworks and processes. Advise and guide the Authority to Operate assessments of the systems. Develop and maintain comprehensive cybersecurity documentation. Conduct risk assessments and develop mitigation plans. Collaborate with stakeholders to ensure compliance with security controls and objectives.
