Security lead
Canberra, Australia
Applications have closed
Company Description
Every person at Leidos plays an essential and valued role in bringing science, engineering and technology together to produce practical solutions for our customers’ most complex problems. It’s how we help make the world safer, healthier and more efficient - work that matters and a mission, like our customers, we are passionate about. We’re open-minded, ambitious and committed to enabling our people to do their best work and be inspired by what they can achieve and impact.
Job Description
Your New Role
Working on a Federal Government project, a Governance, Risk and Compliance position is focused on providing project support for the delivery of secure, compliant and accredited classified systems. Specifically, the role will support the delivery of a development environment hosted on our partners cloud and on-prem infrastructure and include the following tasks:
- Development of Security certification and accreditation documentation with the necessary activities, artefacts and stakeholder contributions required to complete the certification and accreditation process for the assigned projects and systems.
- Ownership for the execution of the Accreditation process with reporting as required by the business, project, Certification Authority or other applicable stakeholders.
- Engagement with key stakeholders to tailor the system scope and approach to delivering security controls, artefacts, risk identification and assessment, security testing and responsibility for risk treatment recommendations.
- Consideration of and alignment with project schedules such that the certification and accreditation effort supports the business requirement to operate the subject system(s).
- Advising engineering teams on secure development and engineering practices and tools.
This role requires the successful applicant to be an Australian Citizen and hold a minimum NV-1 level Australian security clearance.
Qualifications
The following experience is required for GRC personnel:
- Delivering systems into strictly governed environments, such classified Federal Government networks and systems
- Adopting security standards and frameworks, such as the Protective Security Policy Framework (PSPF), Information Security Manual (ISM), and ISO 27001.
- Advocating for security and compliance requirements within the project and advocate for the project’s approach with external stakeholders.
- Communicating sensitive matters respectfully and professionally, enabling decision-makers to understand the security implications of their choices before delivering their decisions
- Prioritise the importance of security and compliance matters in the context of the subject platform or system.
- Providing structural guidance to help project planning, documentation and delivery elements but maintain flexibility to support the delivery approach prescribed by the business.
- Working in cloud environments and leveraging cloud security solutions and controls.
- Working in a agile or dynamic project environment, such as Scrum, DevSecOps etc.
Additional Information
What you’ll love
Leidos is making the world safer, healthier, and more efficient. This program will support one of our key national security customers to streamline their capability delivery processes. Our work will make our nation more efficient and secure.
This is a fast-growing business currently implementing a range of business improvement initiatives. You’ll have the chance to see some market-leading technologies implemented across the function and contribute to building further on the progressive work currently being developed. We offer a flexible working environment where it’s possible to design your ideal work week.
You’ll join a fun and friendly team that supports each other closely and loves celebrating together.
Tags: Agile Clearance Cloud Compliance DevSecOps Governance ISO 27001 Scrum Security Clearance
Perks/benefits: Flex hours Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs