Lead Engineer / Engineer, CISO & Governance, xCybersecurity

What The Role IsReporting to the Agency Chief Information Security Officer (CISO), the job holder will provide security-by-design leadership to project teams across the Home Team departments and HTX. This will ensure the adoption of defence-in-depth best practices and enable the transformation of the Home Team's cybersecurity systems and processes.What You Will Be Working On Collaborate with the CISO to develop and execute the organisation's security strategy, aligning it with business goals and compliance requirements. Familiarise yourself and effectively execute ICT, cybersecurity measures, and government regulations in Information Technology & Smart Systems (ICT&&SS) and the Cybersecurity Code of Practice (CCoP). Review the design, implementation, and delivery of security requirements for application development, distributed computing, and architectural solutions using a "Secure by Design" principle. Assist in orchestrating the incident response plan and advise responders for minimal impact and swift resolution. Collaborate with cyber incident response agencies, such as Government IT Security Incident Response (GITSIR) & Government Cyber Security Ops Centre (GCSOC), for proper incident closure and reporting. Stay abreast of the latest cybersecurity threats and trends to enhance security measures. Direct and influence multidisciplinary teams in implementing and operating cybersecurity controls. Work with cross-functional teams and vendors to integrate security practices throughout the organisation. Maintain comprehensive documentation of security policies, procedures, and incident reports.What We Are Looking For Tertiary education in Cybersecurity, Information Security, Information Technology, Computer Science, or related engineering fields; or proven work experience and skillsets. Experience designing, implementing, and delivering security requirements with a "Secure by Design" principle. Knowledge of Vulnerability Assessment and Penetration Testing (VAPT) for infrastructure, network, web applications, and web services/API. Understanding industry trends in cloud and AI technologies for private, public, and hybrid cloud deployments. Familiarity with Internet-of-Things (IoTs) and Operational Technology (OT) deployments. Cybersecurity professional qualifications such as CISSP, CCSP, CISM, CISA, and CCSP would be advantageous.The Individual Should Possess The Following Traits Positive attitude and collaborative mindset. Excellent communication, presentation, and interpersonal skills. Good planning skills. Ability to work independently and as part of a team. A growth mindset, passionate about learning and using new and emerging technologies.All new hires are appointed on a two-year contract in the first instance and will be assessed and considered for permanent tenure over time, based on performance.As part of the shortlisting process for this role, you may be required to complete a medical declaration and/or undergo further assessment.All applicants will be updated on the status of their applications within 4 weeks upon closing of the advertisement.