Cyber Security Assessment and Authorisation Specialist

Company Description

Leidos is a Fortune 500® Technology, Engineering, and Science Solutions and Services leader. Leidos' 47,000 global employees support vital missions for government and commercial customers. Headquartered in Reston, Va., Leidos reported annual revenues of approximately $15.4 billion for the fiscal year ended December 29, 2023.

Leidos Australia has been a trusted partner to the Australian Government, including the Department of Defence, for more than 25 years, having delivered some of the most complex software and systems integration projects in Australia. With a local workforce of around 2,000, of which 85% hold a government security clearance, we have one of the largest security-cleared workforces in Australia. Our team is also backed by Leidos' global expertise, experience and capabilities.

Job Description

We have a great opportunity to join a highly motivated and dedicated team of cyber professionals providing a leading cyber security capability for the environments that our deployed military personnel rely on.  This role enables you to utilise your broad experience in a supportive team environment, learn new technologies in the cyber security space and interact with highly technical peers, partners and military personnel.

Your New Role

As a Cyber Security Assessment and Authorisation Specialist, you will be responsible for proactively reviewing, assessing, updating, and preparing security documentation and associated artefacts in an ongoing manner to ensure that the environments and systems within our scope have the authority to operate. This is an interesting and challenging role with broad scope that will allow you to test and hone your skills, whilst contributing to National Security, your responsibilities will include the following;

• Review, assess, and update the security documentation suites and associated artefacts to support authorisation activities.
• Validate and verify security controls and their effectiveness against the Australian Government ISM, Essential 8, NIST, other approved cyber security frameworks, and standard designs.
• Security and compliance auditing.
• Gap analysis and risk management.
• Evidence collection.
• Provide expert cyber security advice through excellent written and verbal communication methods.
• Practical and strong application of cyber security governance, risk, and compliance principles and concepts.

• Proactively facilitate outcome focused security assessment workshops with a range of technical and non-technical stakeholders.
• Documentation and record management

Qualifications

Coupled with your education and/or practical experience you will be customer-focused and motivated to deliver outcomes that meet customer mission needs.  In addition, you will demonstrate the following knowledge and skills;

• NV2 Australian Government Security Clearance
• 2+ years’ experience in a similar role
• Experience in conducting security certification and accreditation activities.
• Experience in risk management and completing risk assessments.
• Experience in assessing security controls and evidence collection.
• Proven experience in writing high quality security assessment documentation.
• Familiarity with security frameworks used to facilitate the authorisation to operate.
• Certification such as CRISC, CISM, CISA, CISSP, ISO27001 or similar.
• Excellent communication and stakeholder management skills.
• Strong attention to detail and sound organisational skills.
• Experience working with Defence is desirable.
• IRAP Certification is desirable.

Successful candidates will be required to be Australian Citizens and hold and maintain an NV-2 Australian Government Security Clearance. Applicants with a current NV1 who are willing to upgrade will be considered.

Additional Information

At Leidos, you’ll enjoy 12 weeks’ paid parental leave as a primary carer, flexible work practices, discounted health insurance, novated leasing and more. Foster your career through complete access to learning and development and mentoring opportunities, we have a strong track record of internal promotion and career transitions. 

As a business we are focusing on setting people up for growth and success, so individuals can develop specialist skills and make significant contributions whilst broadening their experience within the cyber security field.  If this sounds like you and you have the right attitude coupled with the willingness to challenge yourself and want to be in a team delivering security capability for government – apply today.

We embrace diversity and are committed to creating a truly inclusive workplace. We welcome and encourage applications from Aboriginal and Torres Strait Islander peoples, culturally and linguistically diverse people, people with disabilities, veterans, neurodiverse people, and people of all genders, sexualities, and age groups.