Senior Cyber Security Engineer

at  Raytheon

SKILLS AND EXPERIENCE

• Experience in security design and accreditation in a defence environment.
• Ability to apply security and information assurance technical principles, theories and concepts.
• Ability to analyse and resolve complex technical problems.
• Advanced knowledge of Australian and US Government security principles and standards including:
• The Information Security Manual
• Defence Security Principles Framework
• Protective Security Policy Framework

NIST 800-171

• Skilled in at least one of the following and a basic knowledge of the remainder:
• Linux or Windows Server and Client operating systems, in particular, with virtualization and cloud architectures
• Networking technologies and design
• Basic knowledge of Emanation Security design principles.
• Skilled in the application of physical security controls.
• Ability to manage small projects or processes within area of responsibility, as required.
• Requires a University Degree in Information Technology, Engineering, Cybersecurity, or equivalent skills and experience.
• An Advanced Degree in a related field (Desirable)
• Postgraduate qualifications in Information Technology, Engineering, or Cybersecurity. (Desirable)
• Certified IRAP Assessor. (Desirable)
• Information assurance management qualifications such as CISM, CISSP, or GSLC.(Desirable)
• Information assurance auditing qualifications such as CISA, CRISC, GSNA, ISO 27001 Lead Auditor, or PCI QSA. (Desirable)
• Minimum 5 years of prior relevant experience
• Requires advanced knowledge of government security standards, controls and guidelines.
• Experience in the development, delivery and integration of computing and communications systems and networks.
• Experience in designing, deploying and maintaining Windows / Linux environments including hardening.
• Previous experience in both technical and Cyber-Security or Information Assurance roles.
• Practical knowledge of project management is desirable.
• Experience with and detailed understanding of the Australian Defence Technical Regulatory Frameworks (Desirable).
• Experience in cross domain solutions (Desirable)
• Experience in Security or Information Assurance role (Desirable)
• Experience in Incident Response roles (Desirable)
• Current minimum of Negative Vetting 1 security clearance is required.
• Appointment to this position is conditional on being granted and retaining a Negative Vetting 2 security clearance. The clearance required may change from time-to-time and will be in accordance with direction from the nominated Chief Security Officer.
  This is your chance to belong to an inspiring team and build your career at a company that invests in your future.
  As our employees say, we do great work at Raytheon Australia and it’s great to #workhere.
  If you are looking for a challenging and rewarding career access your next mission now by clicking the “Apply” button below or contact us at careers@raytheon.com.au
  RTX is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

POSITION ROLE TYPE:

Unspecified

• Use leading-edge technology to design and deliver technical solutions to complex problems
• Work with diverse teams, both locally and globally
• Provide real outcomes that make a difference to our nation’s security

Raytheon Australia is a trusted capability partner to the Australian Defence Force, providing technology solutions that protect and secure our sovereign projects.
We are seeking smart and energised Engineering/IT professionals in the fields of cyber security, infrastructure and cloud-based technologies to apply robust security controls and governance, mitigate risk and manage compliance to our critical data.
Our range of interesting and unique projects leverage the latest technologies to ensure Australia’s superior defence capability continues to keep Australia safe. You will join a local team and be backed with global expertise as well as a tailored professional development program to ensure you and your work are successful.

THE ROLE

The Senior Security Engineer is responsible for providing subject matter expertise for information/operational technology systems and services within internal and customer deliverable systems.
Working within the Engineering Management Office, the Security Engineer conducts a comprehensive risk-based approach to cyber security from defining the system to authorising and monitoring the allocated system and subsystems.
In addition, the Senior Security Engineer provides subcontractor/vendor oversight as required and liaises with government agencies to ensure that the information/operational technology system can achieve authority to operate milestones.

SPECIFIC RESPONSIBILITIES INCLUDE:

• Provide security-related advice to project teams through the lifecycle of the information/operational technology system including acquisition and sustainment.
• Provide security-related advice to project teams on requirements, design, implementation, and operation of the system.
• Develop and maintain security requirements and design as part of the systems engineering program.
• Develop and implement security threat and risk assessments through design, implementation and verification phases of the program.
• Remediate security issues and risks relating to the system and program.
• Develop and maintain security documentation including: System Overview Documents, System Risk Management Plans, System Security Plans, Standard Operating Procedures, and Incident Response Plans.
• In consultation with the applicable agencies and authorities, schedule and plan information assurance activities required to achieve accreditation and maintain compliance.
• Partner with independent external security assessors to plan, execute achieve and maintain system certification and accreditation of the Mission, Support and Specialist Systems and related program facilities.
• Establish and maintain effective working relationships with applicable internal stakeholders and government agencies and authorities.