Security Manager

Your New Role

• Working within a high-tempo Australian Intelligence Agency environment, the Security Manager is responsible for leading and coordinating security outcomes across governance, risk, compliance and operations. The role’s focus is to maintain the confidentiality, integrity and availability of highly classified mission systems, facilities and information, while enabling agile mission delivery through the leadership of a highly skilled team.

• Key responsibilities include:

• Engage with senior Agency stakeholders, mission teams, corporate services, partner agencies and industry providers to shape and communicate security expectations.

• Lead the tailoring, implementation and ongoing maintenance of security controls, risk assessments and accreditation artefacts across ICT, personnel, physical and information security domains.

• Develop and maintain key security documents and frameworks aligned to PSPF, ISM and Agency policies, including security risk management plans, incident response plans and system security documentation.

• Oversee security monitoring activities, coordinate responses to security incidents and advise system owners, administrators and mission leads on their responsibilities to maintain security compliance.

• Provide security input to solution and system design reviews, including secure architecture patterns, secure software development practices and data handling requirements for highly classified environments.

• Plan and sequence assessment and authorisation activities so that security accreditation supports operational timeframes, capability releases and mission priorities.

• Identify, validate and advocate for security requirements and dependencies associated with new capabilities, transitions into service and ongoing sustainment, including integration with partner agency systems.

• Develop and maintain accreditation and assurance plans that describe required activities, artefacts, testing and stakeholder contributions needed to gain and maintain authority to operate.

• Own execution of agreed security plans, maintaining clear reporting for executive management, project boards, Agency security authorities and external assurance bodies.

• Champion security culture uplift across the Agency, delivering targeted awareness, briefings and advice on insider threat, information handling and operational security practices.

• Handover approved artefacts and security responsibilities to operational teams, supporting continuous improvement and re-accreditation activities.

Experience
The following experience and attributes are required for Security Manager personnel:

• Current knowledge of, and practical experience applying, the Australian Government Protective Security Policy Framework (PSPF) and Information Security Manual (ISM) in classified or national security environments.

• Demonstrated experience developing and maintaining security policy, standards and procedures for complex ICT systems, including core accreditation artefacts such as security risk management plans, system security documentation and incident response plans.

• Experience leading or supporting assessment and authorisation activities for highly classified systems, including engagement with IRAP assessors, National Security authorities or equivalent accreditation bodies.

• Experience with secure de

• sign and operation of enterprise and mission systems, including public and private cloud (AWS/Azure preferred), cross-domain solutions and complex enterprise networks.

• A proven ability to advocate for security requirements in multi-disciplinary project and operational teams, balancing mission needs, technical constraints and security obligations.

• Strong written and verbal communication skills, with the ability to present sensitive security issues clearly and respectfully to executives, operators and technical staff.

• Proven ability to record decisions and residual risks accurately, and to document introduced risks for formal acceptance at the appropriate governance level.

• Sound judgement in prioritising security and compliance activities based on threat, vulnerability, impact and mission criticality, including coordination with security engineers, testers and operational partners.

What you’ll love

You will be joining a mission-focused organisation where your work has a direct impact on Australia’s security and sovereignty. You will:

• Work with highly capable teams on complex, real-world intelligence and cyber challenges, using modern technology and secure engineering practices.

• Have access to tailored training, professional development and career pathways across security, intelligence, technology and leadership streams.

• Benefit from a supportive, inclusive culture that respects diverse perspectives and encourages collaboration, innovation and initiative.

If you are looking to apply your security expertise where it matters most, this role offers the opportunity to contribute directly to Australia’s national security mission.

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares.

Original Posting:

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.