Location Canberra
Job type Contract
Salary Negotiable
Specialisation ICT, Technical, TSPV, Other
Contact person Cindace Prasad
Reference TR/062469
Call Email Cindace

RFQ-ASD-LH-02766 Lead Security Architect

Due to the nature of clients we work with here at Kinexus and the projects these roles will be based on, an Australian Government Top Secret Positive Vetting (TSPV) clearance is essential.

These opportunities do not have the ability to obtain sponsorship for a security clearance (including applicants who currently hold a security clearance seeking to upgrade).

ABOUT THIS ROLE

Security Architects design, review, test and assure the technical environment, solution designs and solution implementations in accordance with current and emerging security best practice. They contribute to the technical architecture and security policies and practices.

Estimated start date: Tuesday, 01 July 2025

Initial contract duration: 12 months

Extension term: 12 months

Number of extensions: 1

Location of work: ACT

Working arrangements: ACT, 5 days a week in the office. WFH cannot be accommodated or interstate based cannot be accommodated. Candidates must be willing to undergo ASD's Organisational Suitability Assessment (OSA) prior to engagement. Candidates required to have PV clearance.

ABOUT THE COMPANY

Australian Signals Directorate (ASD) is the federal agency responsible for foreign signals intelligence, cyber warfare and information security. ASD's purpose is to defend Australia from global threats and help advance our national interests.

Situated in Canberra, ASD employs over 2000 TSPV cleared workers. ASD's workforce is growing rapidly. Areas of growth include PMO, cyber security, systems administration and engineering, software development and network engineering.

A top-security, complex and highly technical environment, ASD plays a vital role in the defence of Australia. Long contracts (12 months+) available.

JOB DUTIES AND RESPONSIBILITIES

  • They will be responsible to develop security architectures, based on agency strategies & plans; and deep understanding of technology & complex ICT systems.
  • Review network designs and architectures, investigate, and provide solutions to alleviate any perceived or identified network vulnerabilities or threats.
  • They will provide advice on hardening networks in line with industry best practice. This specialist will be up to date with the latest network security best practices and use their technical and policy skills in this area to enable TF-Networks to deliver a state of the art secure Enterprise Network.
  • Perform risk assessments and report on a wide range of security related controls.
  • They will work closely ICT professionals to assist in the ongoing efforts related to security awareness, certifications, regulatory requirements, security risks and governance of ASD's multitude of classified networks.
  • Contribute to the approval of designs through architectural, security and stakeholder bodies. Ensure that that design activities and reviews canvass input from technical
  • Develop security architectures, (current, transitional and target state), based on agency strategies & plans; and deep understanding of technology & complex ICT systems.
  • Inform & validate security requirements for new and existing capabilities; apply requirements traceability to solution designs, implementations & configurations.
  • Proactively assess the suitability of solution components against relevant architectures, strategies, policies, standards and practices; identifying issues and proposing options for risk reduction.
  • Develop capability gap analysis based on the differences between the current and target state architectures providing guidance on risk management.
  • Provide advice and risk-based guidance to support solution implementation including managing security elements of change requests and deviations from specifications.
  • Obtain, advise and act on threat intelligence and changes to the technology landscape. Author and review products including tailored security risk assessments and business impact analysis.
  • Contribute to the approval of designs through architectural, security and stakeholder bodies. Ensure that that design activities and reviews canvass input from technical and security experts.
  • Contribute to agency security and technical architecture forums, representing organisation and divisional capability stakeholders.

TECHNICAL SKILLS

  • Experience developing and applying security architecture best practices to enterprise and bespoke ICT systems to achieve capability outcomes with proportionate security assurance.
  • Experience providing tailored and robust ICT security advice to technical & project staff.
  • Experience and capability in performing a cyber-security GRC (Governance, Risk and Compliance) role in a large enterprise network environment.
  • Knowledge of the Information Security Manual (ISM), Protective Security Policy Framework (PSPF) and Essential Eight.
  • Understanding of Cyber Security incident response process and plans.
  • Experience and capability in managing client interactions and expectations in a service context.
  • Experience in developing both technical and business governance documentation.

SKILLS & EXPERIENCE NEEDED

Essential criteria

  • Provides definitive and expert advice in their specialist area. Actively maintains recognised expert level knowledge in one or more identifiable specialisms. Oversees the provision of specialist advice by others. Consolidates expertise from multiple sources, including third-party experts, to provide coherent advice to further organisational objectives. Supports and promotes the development and sharing of specialist knowledge within the organisation.
  • Develops and communicates corporate information security policy, standards and guidelines. Ensures architectural principles are applied during design to reduce risk. Drives adoption and adherence to policy, standards and guidelines. Contributes to the development of organisational strategies that address information control requirements. Identifies and monitors environmental and market trends and proactively assesses impact on business strategies, benefits and risks. Leads the provision of authoritative advice and guidance on the requirements for security controls in collaboration with subject matter experts.
  • Develops information assurance policy, standards and guidelines. Contributes to the development of organisational strategies that address the evolving business risk and information control requirements. Drives adoption of and adherence to policies and standards. Ensures that architectural principles are followed, requirements are defined and rigorous security testing is applied. Ensures that accreditation processes support and enable organisational objectives. Monitors environmental and market trends and assesses any impact on organisational strategies, benefits and risks.
  • Produces, or approves network providers', network architectures, topologies and configuration databases for own area of responsibility. Specifies design parameters for network connectivity, capacity, speed, interfacing, security and access, in line with business requirements. Assesses network-related risks and specifies recovery routines and contingency procedures. Creates multiple design views to address the different stakeholders' concerns and to handle both functional and non-functional requirements.
  • Australian Citizenship and a TSPV security clearance is essential

Desirable criteria

  • Monitors the external environment to gather intelligence on emerging technologies. Assesses and documents the impacts, threats and opportunities to the organisation. Creates reports and technology roadmaps and shares knowledge and insights with others.

BENEFITS

Why work for ASD?

  • Work on interesting and prestigious projects vital to the ongoing defence of Australia.
  • Flexible work environment; work the hours that suit you between 7am and 7pm.
  • Low attrition rate: the great variety of projects and opportunities across different business areas ensure few workers leave ASD.
  • Long contracts available.
  • Fantastic growth opportunities available at any stage of your career.

Why Kinexus?

  • Kinexus has been supplying TSPV contractors to government panels since 2004 and have a strong relationship with them. We are one of just 9 suppliers Australia-wide.
  • Our experience in managing contractors in defence/national security industries means we understand the requirements from the Commonwealth, insurances and clearances.
  • DISP accredited; we can hold clearances and manage renewals.
  • Dedicated account manager (me!) who is your dedicated POC and offer continuous contractor care.
  • Rate negotiation guidance in line with the SFIA framework.
  • Dedicated payroll assistant who facilitates your taxes and super.
  • We proactively chase timesheet approvers to ensure you get paid on-time and error free.
  • Regular visits to Canberra for coffee, lunches and quarterly drinks events.
  • We can facilitate novated car leases, LAFHA or salary sacrifice.
  • We'll keep you up to date with the most appropriate, interesting opportunities in your field.
  • Community matters. Kinexus supports women in Defence through our female mentoring program and rewards referrers through our Referral Rewards scheme.
  • Support for your health and wellness through counselling support (EAP) available for all contractors and their families.

Kinexus is the leading recruitment partner to the defence industry in Australia. We support our community in making intelligent connections and create opportunities to help grow careers.

All applications should include your resume as a word document. For more information, visit our website, www.kinexus.com.au or contact Cindace Prasad at 0449 511 324. #LI-CP