We are seeking multiple EL1-level ICT Security Specialists to support cyber security operations and policy implementation across mission-critical environments.You will play a senior role in assessing, managing, and mitigating ICT security risks, and shaping infrastructure that supports classified digital services.
These positions involve a high level of technical and policy expertise, problem-solving, and stakeholder engagement. While most roles are located in Canberra, applicants based in Melbourne, Brisbane, or Perth may be considered, subject to operational requirements. Due to the sensitive nature of the mission, roles are onsite only and remote work is not guaranteed.

REQUIRED TECHNICAL SKILLS & EXPERIENCE:

• Current IRAP Assessor certification
• Minimum of 3 years’ experience in ICT security across architecture, risk management, network security, or operations
• Demonstrated understanding of the ISM, Essential Eight, and PSPF frameworks
• Proven ability to build and maintain effective stakeholder relationships
• Experience developing and implementing SOPs supporting accreditation frameworks
• Strong organisational, written, and verbal communication skills
• Desirable: Bachelor’s degree in Information Technology, Cyber Security, or a related field

REQUIREMENTS

The Australian Signals Directorate (ASD) is seeking multiple EL1-level ICT Security Specialists to support cyber security operations and policy implementation across mission-critical environments. Successful candidates will play a senior role in assessing, managing, and mitigating ICT security risks, and shaping infrastructure that supports ASD’s classified digital services.
These positions involve a high level of technical and policy expertise, problem-solving, and stakeholder engagement. A merit pool will be created to support current and future recruitment across multiple ASD work areas.
While most roles are located in Canberra, applicants based in Melbourne, Brisbane, or Perth may be considered, subject to operational requirements. Due to the sensitive nature of ASD’s mission, roles are onsite only and remote work is not guaranteed.
LH-03905

REQUIRED TECHNICAL SKILLS & EXPERIENCE:

• Current IRAP Assessor certification
• Minimum of 3 years’ experience in ICT security across architecture, risk management, network security, or operations
• Demonstrated understanding of the ISM, Essential Eight, and PSPF frameworks
• Proven ability to build and maintain effective stakeholder relationships
• Experience developing and implementing SOPs supporting accreditation frameworks
• Strong organisational, written, and verbal communication skills
• Desirable: Bachelor’s degree in Information Technology, Cyber Security, or a related field

ADDITIONAL REQUIREMENTS

1. What level of security clearance do you hold and provide your AGSVA CSID?

KEY RESPONSIBILITIES:

• Lead ICT security risk assessments, business impact analysis, and assurance activities
• Develop and implement security strategies, policies, and procedures in line with ASD standards
• Ensure compliance with ISM, PSPF, and Essential Eight frameworks
• Conduct incident response analysis and recommend corrective actions or policy changes
• Provide expert advice on system security architecture and risk mitigation
• Interpret and contribute to the development of security policy and accreditation standards
• Manage priorities and workflows, mentor junior staff, and ensure work is delivered on time and to quality standards
• Collaborate with internal and external technical stakeholders to develop security guidance and policy
• Evaluate strategic and operational risks and contribute to ICT security improvement initiatives

KEY RESPONSIBILITIES:

• Lead ICT security risk assessments, business impact analysis, and assurance activities
• Develop and implement security strategies, policies, and procedures in line with ASD standards
• Ensure compliance with ISM, PSPF, and Essential Eight frameworks
• Conduct incident response analysis and recommend corrective actions or policy changes
• Provide expert advice on system security architecture and risk mitigation
• Interpret and contribute to the development of security policy and accreditation standards
• Manage priorities and workflows, mentor junior staff, and ensure work is delivered on time and to quality standards
• Collaborate with internal and external technical stakeholders to develop security guidance and policy
• Evaluate strategic and operational risks and contribute to ICT security improvement initiatives