Job Description

At Oakton, we create lasting value by uniquely blending business insights and technology solutions to give our clients a significant advantage in today's rapidly changing world. Inside Oakton there are over 1,100 consultants and technologists, professionals with deep expertise, intimate knowledge and specialist skills. How we draw on these experienced-based capabilities amassed over many years is the very foundation of how we create differentiating value.
Oakton provides a broad range of solutions across the Strategy/Architecture, Online/Digital, Integration, Information Management, Customer Relationship Management, Core Business Systems and Managed Services domains. This capability has been purpose-built for the Australian market. It is tightly coupled with our local client-facing services and enables competitive pricing in a differentiated manner for clients without compromising quality of service.
Due to the increasing number of upcoming projects, we are currently seeking the expertise of a highly-skilled Senior Information Security Consultant to join our IT Audit team in Canberra on a permanent full-time basis.
The Role:
  • Provision of advice to Government in relation to information security risk assessments, security policy and systems logging analysis.
  • Delivery of systems-generated reports and analysis of security event logging, including the use of logging tools such as SNARE and SPLUNK
  • Provision of Information Security Risk Assessments to meet client requirements and in line with ISO/IEC 31000, the ISM and PSPF
  • Creation and maintenance of documentation such as an Information Security Policy (ISP), System Security Plans (SSP), Security Risk Management Plans (SRMP), Statement of Applicability (SOA) and Incident Response Plans (IRP) in line with the ISM.
  • Development and management of Information Security Management Systems in accordance with ISO/IEC 27001 and as they apply to Australian Government and Defence.
  • Policy and security advice in relation to Australian Government Security guidelines and standards, the ISM and PSPF
  • Provision of advice on IT system certification and accreditation processes
  • Provision of vulnerability assessments
  • Identifying and managing relationships and dependencies as they relate to IT Security analysis tasks
  • Being accountable for defined work assignments often involving immediate action or short term planning of resources
  • May be required to lead a team of consultants on engagements
  • Assist with preparation of proposals, statements of work and other relevant documents
  • Contribute to building and developing the client base by actively seek new business opportunities within existing client base
  *Only Australian citizen eligible to attain Australian Government Security clearance (Existing Baseline security clearance preferred) will be considered*
Skills and Experience Required:
  • A minimum of 3-5 years’ experience working in an Information Security environment with Australian Government and Defence clients (either in-house or as a consultant)
  • Demonstrated Information and IT Security Risk Assessment experience
  • Demonstrated high level technical writing skills
  • Demonstrated knowledge of Australian Government Security requirements, the ISM, PSPF, ISO/IEC 31000 and ISO/IEC 27001
  • High level knowledge and proven experience in security assessment and certification practices as applicable with Australian Government standards and guidelines in accordance with the Information Security Registered Assessor’s Program (IRAP)
  • Previous experience with security logging, analysis and reporting tools such as Snare and Splunk
  • Ability to provide specialised technical services and advisories such as vulnerability assessment on systems
  • Ability to deliver to tight timeframes with a demonstrated track record of successful delivery of outcomes
  • Proven ability to engage with senior stakeholders and maintain relationships, particularly in relation to the provision of reports, identification of risks, issues and task dependencies
  • Proven ability to lead the development and implementation of strategies and plans for the improvement of processes and related services in a security environment

Save Job

More Jobs at Oakton Follow Company

See all jobs at Oakton