Senior Information Security Officer – Defence Sector

Title:

Senior Information Security Officer – Defence Sector

Your KBR future – delivering solutions and changing the world

About KBR:

We are a company of innovators, thinkers, creators, explorers, volunteers and dreamers who all share one goal — to improve the world.

KBR delivers science, technology and engineering solutions to governments and companies around the world. KBR employs approximately 34,000 people performing diverse, complex, and mission-critical roles in 33 countries. 

For 65 years, KBR and its heritage companies are proud to have delivered some of Australia’s largest and most complex projects.

With around 2,000 employees in 6 primary offices throughout Australia, we are committed to social and environmental sustainability and delivering projects with a digital mindset driving innovation within our business and for our customers.

We help ensure mission success on land, in the air, at sea, in space and cyberspace for our Defence customers. From individual technologies and services to comprehensive project delivery and mission execution, no other company can match the breadth and depth of KBR.

KBR comprises a talented team who provide a broad spectrum of capabilities across Australia and the Asia Pacific. Our proven project teams readily address complex and multi-disciplinary activities, providing low-risk and cost-effective solutions to the Defence force.

The Opportunity:

KBR is inviting expressions of interest from highly skilled and experienced Senior Information Security Officers to support critical Defence programs based in Brisbane or Canberra.

As a Senior Information Security Officer, you will play a vital role in ensuring the protection of Defence systems, information, and assets, supporting the ongoing delivery of secure, reliable, and compliant Defence capabilities. This is an exciting opportunity to contribute to national security outcomes and work with a diverse team of experts on high-impact Defence projects.

The key responsibilities of the role will include, but is not limited to: 

• Lead the development, implementation, and maintenance of Information Security Management Systems (ISMS) to ensure Defence compliance with ISO 27001, ACSC Essential 8, and Defence Security requirements.

• Conduct risk assessments and vulnerability management, ensuring appropriate information security controls are in place to protect Defence systems and data across their lifecycle.

• Develop and enforce information security policies, procedures, and best practices, ensuring Defence IT infrastructure and systems are protected against cyber threats and vulnerabilities.

• Support the implementation and maintenance of cybersecurity frameworks and ensure compliance with national and international information security standards.

• Provide expert advice to Defence stakeholders and project teams on information security best practices, emerging threats, and mitigation strategies.

• Collaborate with cross-functional teams, including Defence security, engineering, and project management, to ensure robust security governance for all Defence programs.

• Conduct security audits, assessments, and incident response activities to ensure the availability, integrity, and confidentiality of Defence information assets.

• Maintain awareness of current cybersecurity trends and emerging threats, and continuously update security practices to protect Defence information systems.

As the ideal candidate you will bring:

• Tertiary qualifications in Information Security, Computer Science, Information Technology, or a related discipline.

• Minimum 5 years of experience in an Information Security role, ideally within Defence, Government, or similarly regulated industries.

• Expertise in implementing and managing Information Security Management Systems (ISMS) and conducting security risk assessments.

• Strong knowledge of Defence security policies, standards, and frameworks, including ISO 27001, NIST, ACSC Essential 8, and DEF(AUST) 3000.

• Experience with security tools, such as SIEM, firewalls, endpoint protection, and vulnerability scanning tools.

• Proven ability to communicate effectively with senior stakeholders, providing expert guidance on complex security issues.

• Australian Citizenship is essential due to security clearance requirements.

• NV1 security clearance (or the ability to obtain) is highly desirable.

Benefits of KBR

• A workplace culture certified as a Great Place To Work (Aus, India, UK & US)

• Flexible working conditions

• Competitive salary (including annual reviews)

• Paid Parental leave

• Paid Reservist leave

• Income protection

• Corporate rewards

• Salary packaging/Novated leasing

• Discounted employee stock purchase plans

• Flu shots, skin checks and private health insurance discounts

• Career development: Online learning, mentorship and career pathways

If you’re ready to shape tomorrow, let’s get started. Apply Now!

KBR acknowledges the Traditional Custodians of Country throughout Australia and their continuing connections to land, sea, community and culture. We pay our respects to Elders past and present.

As a Major Service Provider of the Australian Defence Force, an AGSVA security clearance will be required and compliance to International Traffic in Arms Regulations (ITAR). As such, our hiring decisions are based on the key requirements of each role and candidates are selected based on their unique strengths and experiences.

#LI-JAW1