Overview
The role involves contributing to the development and enforcement of security policies and procedures, performing technical security risk assessments and accreditation of information systems, and supporting risk management activities to safeguard systems against cyber threats.
Key Responsibilities
- Conducting security risk assessment for information systems
- Contributing to information assurance and CIS security accreditation process
- Advising stakeholders on security controls, policies, and compliance
- Monitoring threats and supporting vulnerability assessments
- Supporting incident response
Required Experience
- 2 to 3 years related experience (for Mid-level role)
- 3 to 3 years related experience (for Senior role)
- Exceptionally, 6 years extensive and progressive expertise (for Mid-level role)
- Exceptionally, 10 years extensive and progressive expertise (for Senior role)
- Extensive experience with the security accreditation process for information systems
- Experience with writing or enforcing security policies and procedures
- Knowledge of infrastructure security, edge security, and cloud (AWS, Azure) security practices
- Experience with insider threat capabilities
- Prior compliance audit experience/knowledge (ISO 27001, NIST 800-53, GDPR)
- Experience in governance, risk, and compliance (GRC)
Qualifications
A minimum requirement of a Bachelor’s degree at a nationally recognised/certified University in a related discipline
