IT Security Advisor - 2704


Canberra based federal government agency is seeking a part time IT Security Advisor (ITSA).

The successful candidate will provide advice, guidance to the agency and work closely with the IT Security Manager, IT Security Officer and the Security Advisor.

The ITSA should have the following competency:

  1. Comprehensive knowledge of the standards which govern the security of government information and ICT systems including:
    1. The Australian Signals Directorate’s publication the Australian Government Information Security Manual (ISM).
    2. The Protective Security Policy Framework (PSPF).
    3. ISO 31000 Risk Management and ISO 27005 Information Technology Security Risk Management.
  2. Competence in ICT security and the application of ICT security measures.
  3. Security risk assessment and management and subsequent Policy, Plan and Procedure development including the Security Risk Management Plan (SRMP), System Security Plan (SSP), Statement of Applicability (SOA) and Standard Operating Procedures (SOP).
  4. Development and delivery of ICT security awareness training to Agency personnel.
  5. ICT systems audits to detect security incidents and recover evidence for security investigations.

The ITSA will assist with the coordination of the governance of ICT security measures to ensure:

  1. The Confidentiality, Integrity and Availability of Agency’s ICT systems and information are protected against compromise.
  2. Information in electronic form is stored, processed and/or communicated in accordance with the Agency’s requirements and Australian Government policies.

ITSA Function:

  • Assist Agency ICT security personnel.
  • Assist the CSO/CISO with the development of the Agency’s ICT security strategy, plans, policies and procedures.
  • Provide advice to agency personnel on ICT security.
  • Assist ICT personnel respond to and/or manage ICT security incidents.
  • Coordinate a range of ICT audits and system certification activities.
  • Liaise with ICT contractors in the delivery of secure ICT services.
  • Liaise with agency security staff providing physical, information and personnel security.

Your main skills and experience

  • in IRAP and system certification and accreditation requirements.
  • excellent knowledge of the ISM and PSPF.
  • risk management methodologies.
  • extensive policy and document writing experience as they relate to security governance, risk and compliance.
  • in developing a variety of technical documentation.

Nice if you have skills and experience in:

  • or background in information security tools such as SIEM, endpoint software, IPS, IDS products.
  • relevant security certifications such as CISSP, CISM, CISA etc.
  • as an IT Security Advisor (ITSA).

Other Requirements:

  • Australian Citizen with a current baseline security clearance.
  • Able to start employment 1st of May 2019.
  • Part time (2 days a week), 1 year contract engagement with an option to extend for another year.
  • Report onsite in Canberra ACT office.
  • A one (1) page expression of interest outlining skills and capabilities must be submitted with a complete resume to be considered for this position.

Got questions about the role? Email us at

Interested? APPLY NOW!!

Canberra, ACT

Australian citizenAustralian Government Information Security Manual (ISM)Australian government policiesAustralian Signals Directorate’s publicationbaseline security clearanceCISACISMCISSPendpoint softwareICT securityICT systemsICT systems auditIDS productsInformation Technology Security AdvisorIPSIRAPISO 27005 Information Technology Security Risk ManagementISO 31000 Risk ManagementITSANV1 security clearanceProtective Security Policy FrameworkPSPFrisk management methodologiessecurity governanceSecurity risk assessment and management and subsequent PolicySecurity Risk Management Plansecurity toolsSIEMSRMPStandard Operating Procedures (SOP)Statement of Applicability (SOA)System Security Plan (SSP)