Multiple Lead Cyber Advisor

Multiple Lead Cyber Advisor Positions - Federal Government Department

Closing Date: Thursday, 01 May 2025, 11:59pm (Canberra time)
Company: Federal Government Department
Estimated Start Date: Tuesday, 01 July 2025
Initial Contract Duration: 12 months (with potential extension)
Experience Level: Lead (EL1 equivalent)
Location: ACT
Working Arrangements: Onsite at Barton, ACT
Maximum Hours: 37.5 hours per week
Security Clearance: Must be able to obtain Negative Vetting Level 2

About the Role:

We are seeking skilled Cyber Advisors for multiple positions within our Federal Government Department. The roles focus on delivering high-level expertise in the following key areas:

• Engineering - Capability Development

• Assurance - Continuous Monitoring

• Assurance - Security Assessment

• Operations - Audit Analysis and Response

These positions offer the opportunity to work within a dynamic and high-impact environment, providing expert advice, ensuring security best practices, and contributing to the protection of critical government systems and assets.

Key Duties and Responsibilities:

• Integrate new systems with cyber capabilities to ensure comprehensive coverage and collection of audit events.

• Enhance technical capabilities in:

  • Audit and response (SIEM)

  • Vulnerability management

  • Automated patching and security testing

• Expand vulnerability management and patching coverage across systems and classifications.

• Perform continuous monitoring to remediate identified vulnerabilities, including:

  • Vulnerability management within the context of the system

  • Penetration testing and configuration analysis

  • Critical patch/mitigation/remediation reports

• Educate and report on cyber security vulnerabilities to inform system owners and improve cyber defense strategies.

• Develop and improve security assessment capabilities, models, and processes to streamline authorization and enhance security posture.

• Undertake security assessments of ICT systems and platforms, including:

  • Developing security assessment test plans

  • Performing system security control validations

  • Documenting security assessments and Plan Of Actions and Milestones (POA&M) reports

• Monitor security capabilities for issues, events, IOCs, and suspected intrusions across systems and classifications.

• Lead technical response activities for confirmed incidents, ensuring timely action and reporting to key stakeholders.

• Develop response processes and plans for confirmed security incidents.

• Research, identify, and maintain audit use cases, engaging with customers to develop requirements and monitor effectiveness.

Essential Criteria:

Engineering - Capability Development:

• Proven experience in security engineering, software development, data engineering, or system integration.

• Hands-on experience with Splunk and/or Tenable.

• Proven experience in vulnerability management.

• Hands-on experience with Tenable and/or Splunk.

• Proven experience in security assessments and/or security control testing.

• Strong knowledge and experience with ISM, PSPF, and system authorisation.

• Proven experience in security operations, data analysis, and/or incident response.

• Hands-on experience with Splunk.

Desirable Criteria:

• Relevant industry certifications are highly desirable.

• CISA or IRAP certification is highly desirable.

• CISA or IRAP certification is highly desirable.

• Relevant industry certifications are highly desirable.

Desirable Security Clearance Level:

• Positive Vetting

At Cleared Recruitment, we provide tailored recruitment solutions to individuals with a background in ICT, Engineering, Cyber and Project Services, who are seeking their next opportunity within Defence Industry, Federal Government, Intelligence and National Security.