Security Lead

2 days ago Be among the first 25 applicantsCompany DescriptionAt Leidos, we do work that really matters inspired by our mission to make the world safer, healthier, and more efficient through technology, engineering, and science.

With 25 years of local experience, our over 2000 team members work together to solve Australia's toughest challenges in government, defence, intelligence, and border protection.

We're robust and ambitious, and we empower our people to do their best work.

You'll feel inspired by what you can achieve and will be supported by an inclusive and flexible culture that genuinely cares for your wellbeing.

Together, we can be the difference.BenefitsWe've got so much to offer at Leidos, here are a just a few of the benefits we provide our team : 12 Extra Days Leave : Life Days are the Leidos way of recognising that we all need some extra time out to take care of life.

By working slightly more than the minimum weekly hours (2 hours per week for full timers), you can accrue up to an extra 12 days of leave per year.Leidos Life Hub provides access to discount offers or cashback rewards with over 400 Australian and International retailers.Professional development and support to set you up for success and assist you in achieving your career aspirations.Job DescriptionYour New RoleRoleWorking on a Federal Government project, the Governance, Risk and Compliance position is focused on providing project support for the delivery of secure, compliant, and accredited systems.

Specifically, the role will support the delivery of a DevSecOps environment hosted on our partners' cloud and on-premises infrastructure.

Tasks include : Engagement with key stakeholders, including internal project management, Assessment Authority representatives, security service providers, other internal IT security personnel, and business owners.Tailor and deliver security controls, artefacts, risk assessments, and security testing.Provide advice on corporate policies and procedures required to operate the system and draft these documents.Provide basic security configuration and monitoring for the project and educate administrators on their responsibilities to maintain security compliance.Provide advice on secure software development practices.Consideration of and alignment with project schedules such that the assessment and authorisation effort supports the business requirement to operate the subject system(s).Identification, validation, and / or advocacy for security requirements (functional or non-functional) and dependencies associated with system delivery, transition into service, or ongoing sustainment.Development of an Authorisation Plan detailing the elements above with the necessary activities, artefacts, and stakeholder contributions required to complete the certification and accreditation process for assigned projects.Ownership for the execution of the Authorisation Plan with reporting as required by the business, project, Assessment Authority, or other interested stakeholders.Handover all completed artefacts to operational groups for ongoing sustainment of the authorised system.QualificationsWho You Are and What You'll BringCurrent knowledge of and experience with the Australian Government Protective Security Policy Framework (PSPF) and Information Security Manual (ISM).Knowledge of security policy and procedure writing, including the core artefacts of the ATO process i.e.

SSP, SSP-A, SRMP, CMP, IRP.Experience of conducting assessments for Authority to Operate, or experience with systems being assessed including IRAP assessments.Experience working with public cloud (AWS / Azure preferred), along with enterprise networks.An ability to advocate for security and compliance requirements within the project and advocate for the project's approach with external stakeholders is necessary.An ability to communicate sensitive matters respectfully and professionally, enabling decision-makers to understand the security implications of their choices before delivering their decisions.An ability to prioritise the importance of security and compliance matters in the context of the subject platform or system is required in consultation and support of Security Engineers, Security Testers, or other external stakeholders.This role requires the successful applicant to be an Australian Citizen and hold a TSPV level Australian security clearance.Additional InformationWhat You'll LoveAt Leidos we look after our staff.

Flexible working practices, great team building initiatives, consistent learning and development opportunities, employee discounts, and excellent exposure to a variety of technologies and projects are just some of the perks.

We are growing and evolving, so it's an exciting place to be.Our diverse employees support vital missions for government and commercial customers.

Qualified women, minorities, individuals with disabilities, and protected veterans are encouraged to apply.

Leidos is an Equal Opportunity Employer.Seniority levelMid-Senior levelEmployment typeFull-timeJob functionInformation TechnologyDefense and Space Manufacturing

J-18808-Ljbffr