Company Logo

Cyber Security Consultant

Nova Systems

Job Description

Nova Systems is a global engineering services and technology solutions company with strategically located offices in Australia, New Zealand, the United Kingdom, Norway, and Singapore. From national defence and essential services to border control and cyber security, these are the challenges we partner with our clients to anticipate, understand, and solve.

At Nova Systems, we provide highly specialised advice and solutions at scale, we are agile and ready to predict, react and respond. We refer to it as being "Optimised for Performance". Small enough to care, big enough to matter, we leverage the benefits of scale for our clients.

But what makes Nova Systems truly unique, is our people. Nova Systems is where the best and brightest minds come together to challenge, collaborate, and innovate.

At Nova Systems we see things differently. We bring (and take) a different perspective. We are the smarts behind the solution.

About the role:

Nova Systems is currently seeking a Cyber Security Specialist to undertake Governance, Risk & Compliance work across a range of Whole of Government (WoG) Projects, primarily in Canberra and Newcastle, but other locations will be considered for the right candidate.

The role will predominantly be working on system acquisition and development projects; shaping solutions to incorporate cyber security into systems design and developing cyber security documentation.

With the evolving nature of cyber security, the objective outcomes are changing from purely ICT certification and accreditation to a more holistic, cyber-worthiness view of the capability being introduced. This change is necessitated by the expansion of cyber threats from an ICT perspective to one that now includes the supply chain, operational technology and integrated control systems.

As a Cyber Security Specialist with Nova Systems, you will be working on client projects in a consulting role to implement systems that have acceptable levels of cyber security risk. The work will involve; analysing the proposed system along with dependent systems, communicating with client stakeholders and developing cyber security documentation. Outcomes will be an assessment that systems are authorised to operate in line with the Australian Government Information Security Manual (ISM).

As this is a consulting role, it will have a balance of both technical work and client engagement.

Please note: this role will be based in Canberra. However, candidates from other locations will also be considered.

What you will be involved in:

You will have a good knowledge of cyber security standards such as the ISM and NIST SP 800-53 and cyber maturity models such as the Essential Eight Maturity Model and the C2M2. Experience in assessing systems against cyber standards would be highly favourable.

You will have also had exposure to Government acquisition and development projects at any stage of the project lifecycle.

Technical experience is highly desirable in one or more of the following areas:

  • ICT Security - Governance, Risk and Compliance
  • Identity and access management
  • Designing and implementing secure network technologies, client, and server operating systems
  • Secure application development and deployment
  • Intrusion detection/prevention systems and methodologies
  • Incident response detection, analysis and recovery
  • Conducting vulnerability assessments and/or penetration tests
  • Data loss prevention capabilities
  • Cloud security services, controls and compliance
  • Vulnerability scanning of Operational Technology (OT) devices and networks
  • Having undertaken business impact assessments against organisational assets and data

You will have demonstratable experience working with a range of stakeholders including System Owners/Sponsors, Business Users, Technical Staff and Certification/Accreditation Authorities in regard to the above areas of expertise.

What we would expect from you:

  • An IT-related degree from an accredited institution of higher education
  • 1+ years' of experience working in information security combined with 3+ years' experience working within the ICT industry
  • An Australian Citizen with a current or suspended AGSVA clearance (NV1 preferred)
  • Certifications from reputable organisations such as SANS, ISACA, EC-Council, CompTIA and ISC2
  • Demonstrated knowledge of ICT security frameworks including the Australian Government Protective Security Policy Framework (PSPF), The Australian Government Information Security Manual (ISM) the Defence Security Policy Framework (DSPF)
  • Knowledge of other ICT security frameworks such as NIST CSF, ISO/IEC 27001/27002, SABSA, OWASP, MITRE ATT&CK and COBIT
  • Experience in developing security documentation to meet Security Accreditation; requirements, including the System Overview Document (SOD), Security Risk Management Plan (SRMP), System Security Plan (SSP) and Annex (SOA), Incident Response Plan (IRP) and Standard Operating Procedures (SOPs)
  • Demonstrated critical thinking and analytical skills
  • Demonstrated ability to work independently and collaboratively
  • Good client management/stakeholder engagement skills
  • Commitment to on-going professional development

Nova's Value Proposition; Beyond the pay cheque:

In addition to salary, you are supported with:

  • Flexible working conditions to suit individual needs and dress for your day
  • Commitment to Professional and Personal Development (up to $5000 per year)
  • Reward & Recognition Program offering exclusive discounts from hundreds of major retailers, helping you to save on groceries, petrol, holidays and more!
  • Additional Leave entitlements include Reserve Leave, Loyalty Leave, Parental Leave and Purchased Leave
  • Wellbeing Hub with access to health and fitness content
  • Employee Assistance Program for employees and family members
  • Access to Defence Health and Travel Insurance
  • Novated Leasing and Salary Sacrifice
  • Nova Employee Share Offer
  • An inclusive and supportive culture
  • A range of other great benefits, just ask us!

To apply, please click on the "apply now" button and submit your resume using the "upload resume" function in PDF Format (only).

Alternatively, for a confidential discussion contact Glenn in Nova's Talent Acquisition Team on (08) 8252 7100.

Nova Systems does not accept any recruitment agency solicitation.