Principal Adviser Cyber Security

In this role you will : Lead the implementation, adoption, and continuous improvement of the Department's Information Security Management System (ISMS). Develop and maintain an information security policy framework for QCS Develop and implement an information security threat and risk assessment process through engaging with internal and external stakeholders to ensure identified risks and treatments are managed effectively and in line with the QCS risk management framework and appetite. Undertake threat modelling and information security threat and risk assessments of assets in scope of the QCS ISMS. Work with stakeholders in undertaking information security classification assessments. Perform secretariat duties for governance committees and working groups as required. Implement, lead, and manage a cyber security awareness program for all QCS employees. Develop and lead cyber security assurance activities as required (e.g., vulnerability threat management, Microsoft Purview). Develop cyber security reports, briefing papers, and presentations for senior executive and committees. Promote cyber security best practice by developing and maintaining positive working relationships with key internal and external stakeholders. Acquire and maintain knowledge of contemporary cyber security / information security best practice and act as an active champion of cyber security / information security best practice within QCS.

• Perform other duties as required.

This work is licensed under a Creative Commons Attribution 3.0 Australia License.