6 month contract, 2 x 3 month extensions possible
Security SME on data platform project
You'll be partnering with a prominent Australian organisation based in Sydney to deliver security on an important project (New Data Platform, Microsoft). You will be directing the team on relevant security control design, implementation before making the necessary preparations for a smooth IRAP assessment. The ideal candidate for this role will have recent experience in cloud, data and transformation projects providing security advice and direction.

Initial 6 month contract with potential for 2 x 3 month extensions. $1000 - $1200 inc. super / + GST per day. There may be some flexibility for strong candidates.

Responsibilities

Delivery and review of strategic, tactical and operational design artefacts, advice and configuration input for data management platforms and / or cloud transformation.
Specification, design and implementation of controls designed to mitigate risks and issues.
Experience with security risk management of first and related party systems and services arising from transformation projects and implementation of cloud services.
Essential 8 alignment, including: protection of the system and assets during development and operation, integration into existing monitoring capabilities and oversight of response plans.
Documentation and preparation for IRAP assessment of the resulting service. A key outcome is to ensure an unsurprising IRAP assessment report.
Ensuring establishment, conduct and ongoing implementation of assurance including vulnerability assessments, patching and penetration tests
Identification and remediation of relevant security capability gaps as needed.
You will be required to attend the office (Sydney) 50% of the time with the other 50% WFH. This is mandatory.
Skills and Experience

Design, implementation and operation of SAAS/PAAS/IAAS cloud data management platforms and transformation of services to use cloud.
Preparation of organisations for IRAP assessment.
Production of system authorisation documentation, requiring application of the Information Security Manual, the Essential Eight and technical risk management.
Working insights into the Australian Federal Government environment, modern cloud data technologies, Microsoft cloud data platforms and services, Azure, working in an agile team.
Comfort with both technical and business level discussions.
Recent relevant experience in a regulatory, financial and government context transforming services will be highly beneficial. Relevant qualifications or certifications in technology, engineering and cybersecurity will be valuable.
Strong preference will be given to candidates who hold an NV1. Minimum is eligibility for a Baseline clearance and we require a recent Federal police check. As such, you MUST be an Australian citizen to be eligible for this role.
Reference number: BBBH236862