Information Security Governance Specialist
The Information Security Governance Specialist will have the following Key Duties and Responsibilities: Coordinate with stakeholders to ensure relevant information security policies and procedures are developed and/or updated to align with the ISM. Policies may be at a program, agency or all of government level Develop the necessary documentation such as processes, work instructions and procedures to ensure EPS program and project alignment with ISM Develop appropriate governance and reporting artefacts to support the development of a System Security Framework for all EPS ICT Projects Undertake periodic reviews of the solution design and configuration to ensure Security Controls have been implemented as defined in the system Security plan The role will require the Information Security Governance Specialist to work closely with system owners, policy and strategy development, information security units, project, technical and business subject matter experts. Deliverables The Information Security Governance Specialist will ensure that all the information security assessment recommendations are addressed, as outlined in the Scope section.
All defined outcomes will be delivered progressively and are to be completed within the terms of the contract unless agreed otherwise with the Director Design Authority. Requirements The Information Security Governance Specialist should, at a minimum, possess the following skills and experience: Essential Skills and Experience Information security implementation experience with a strong knowledge and understanding of the ISM and its controls Experience in information, cyber and/or technology risk and security related compliance and governance Experience in developing information security related plans, processes, work instructions and procedures Strong verbal and written communication skills Experience interacting with a wide range of technical and business stakeholders Desirable Skills and Experience Experience conducting internal compliance assessments of ISM information security related polices, standards and processes Experience in operational risk management and internal audit assurance, including risk mitigation, planning and strategy Experience working in government organisations Excellent problem solver and critical thinker who is able to synthesize information and recommend solutions Personal Qualities required of Candidates High level verbal and written skills with ability to effectively communicate with team members and stakeholders Ability to work in a large team environment with members of diverse cultures and backgrounds Self-starter with high personal drive and a positive attitude Disciplined and accountable for supporting and maintaining work products Behaves in a respectful and professional manner, maintaining high integrity and transparency when delivering work Excellent problem solver and critical thinker Promotes teamwork and collaboration when engaging stakeholders, internal and external Ben....