Cyber Security Quality and Compliance Officer
- 13 Apr 2021
- Sydney
- Contract
- NSW Government
- Initial 6 Month Engagement
- Immediate Starts Available
Our Client, a NSW Government department is seeking to appoint a Cyber Security Quality and Compliance Officer to join the existing team on an initial 6-month contract basis with opportunities for extension based on performance and business requirements.
The overarching Essential 8 adversary uplift is a three-year program of work.
Reporting into the Manager of Cybersecurity Governance and Compliance the successful candidate will cover the following:
Scope of work:
Selection Criteria:
The overarching Essential 8 adversary uplift is a three-year program of work.
Reporting into the Manager of Cybersecurity Governance and Compliance the successful candidate will cover the following:
Scope of work:
- Assist in the development of the Quality and Compliance program to ensure appropriate cybersecurity policies and standards are met and the Government department and other entities reach their target maturity levels with cybersecurity.
- Actively monitor and report on information security compliance levels with relevant legislation, policies and procedures and agreed operating principles.
- Development of systematic procedures and plans in collaboration with the cybersecurity management and technology teams, to monitor, measure and improve compliance with policies and procedures, and to ensure controls in place are effective to mitigate cyber security risks.
- Reviewing and maintaining Information Security Management System (ISMS) controls ownership within the Department and other entities.
- Help develop a quality and compliance framework to ensure the Department is meeting government and regulatory compliance requirements.
- Work with the Department and other entities to develop information security and Essential 8 compliance metrics to ensure the cybersecurity policies and standards are met, and appropriate controls are in place to reach target maturity levels with cybersecurity.
- Coordinate with the Department and other entities to report on the quality and compliance performance metrics and mandatory reporting requirements for Cyber security NSW and other government bodies as appropriate.
- Lead or assist with internal and external audits and developing management action plans to fix audit findings as per compliance and quality framework and regularly report progress to the committees in the Department.
- Responsible for maintaining Information Security Management System (ISMS) and Essential 8 controls ownership within the Department.
- Assist in the development of the compliance and audit processes and procedures across the Department.
- Responsible for Essential 8 maturity reporting on the Departments information assets to the program governance forum and other committees.
- Work with various team with the Department to develop plans to improve compliance with cybersecurity policies and standards and provide input to drive policies to achieve target maturity levels.
Selection Criteria:
- Australian Citizen or permanent residency essential
- Strong knowledge of the Essential 8 controls coupled with cybersecurity polices and compliance
- Familiarity with Cyber security NSW policies highly regarded
- Demonstrated experience monitoring and reporting on information compliance levels and reviewing and maintaining ISMS controls