Cyber Advisor (PROJ-4631)

Key duties and responsibilities

• Perform certification or validation of systems to support accreditation through collecting and analysing information and cyber security data.
• Accountable for the production of information and cyber security reporting, policy or doctrine which may include analysis, detections and response statistics, security incidents and breaches. 
• Apply expertise in, and provide advice on a range of information relating to cyber security matters. 
• Apply experience and expertise in the analysis of information and cyber security related activities or data to contribute to the improvement of security posture and in support of the development of policy. 
• Build and sustain effective relationships with stakeholders and customers relating to the suitability and implementation of cyber security systems, policies, standards and guidelines. 
• Work collaboratively within a multi-disciplinary environment and facilitate team work and group activities. 
• Assess and analyse information and cyber security practices and procedures to ensure compliance with security principles, polices, standards and guidelines. 
• Interpret business objectives and adapt and adjust priorities to progress work and meet business objectives. 
• Is innovative in researching and identifying information and cyber security vulnerabilities and forecasting potential intrusion methods to improve security posture. 

Technical skills

• Understanding and experience in the application of the Essential 8.
• Certified IRAP assessor is desirable.

Essential criteria

• Drafts or reviews components of Information Security Strategy at programme or project level and/or contributes to organisational Information Security strategy.
• Has been actively involved in Information Security research activities with minimal supervision; including developing and review new ideas, obtaining background information and conducting tests.
• Recognises and reports non-compliance with applicable legislation and regulation. Updates Information Security polices and standards to comply with legislation and regulation with minimal supervision.
• Understands the principles of applied research in Information Security and has practical research experience.