## Cyber Security Advice and Assessment Specialist
## Position Overview
We are looking for a skilled and detail-oriented Cyber Security Advice and Assessment Specialist to join our team and play a pivotal role in safeguarding our organisation's information assets and digital infrastructure. This position is responsible for conducting security assessments, interpreting policies, and delivering expert guidance on cyber security strategies and risk management. The ideal candidate brings a strong technical foundation combined with the ability to communicate complex security concepts to a broad range of stakeholders. This role suits a proactive professional who thrives in dynamic environments and is committed to continuously strengthening an organisation's security posture.
## Key Responsibilities
- Conduct comprehensive risk assessments and security control evaluations to identify vulnerabilities and weaknesses across the organisation's systems, networks, and cyber security policies
- Perform vulnerability testing and threat analysis, translating findings into actionable recommendations that reduce exposure and strengthen overall defences
- Provide specialist advice and practical guidance on security strategies, helping stakeholders understand and effectively manage identified risks and emerging threats
- Develop, implement, and maintain security policies, standards, procedures, and guidelines that support a robust and consistent organisational security posture
- Lead and support investigations into security incidents, producing clear and thorough reports on findings and guiding the refinement of detection and response processes
- Assist with root cause analysis following security incidents or breaches, assessing the extent of impact and recommending appropriate remedial and preventative actions
- Review and assess information system designs to ensure security requirements are embedded throughout development and implementation lifecycles
- Develop and maintain meaningful metrics and reporting frameworks that articulate the impact of cyber security risks on business processes and information assets
- Align and coordinate internal and external audit activities, security assessments, and compliance engagements to ensure consistent and efficient outcomes
- Collaborate with cross-functional teams to embed security best practices across business operations and technology initiatives
- Communicate complex security concepts clearly to both technical and non-technical audiences, providing guidance that enables informed decision-making at all levels of the organisation
## Required Qualifications & Skills
- Bachelor's degree in Cyber Security, Information Technology, Computer Science, or a related discipline
- Demonstrated experience in a cyber security role with a focus on risk assessment, security advisory, or security operations
- Strong working knowledge of security frameworks and standards such as ISO 27001, NIST, ASD Essential Eight, or equivalent
- Proven ability to conduct vulnerability assessments, penetration testing coordination, and security control reviews
- Experience developing and implementing security policies, standards, and procedures within a complex organisational environment
- Solid understanding of network security, cloud security principles, identity and access management, and secure system design
- Experience investigating and reporting on security incidents, including root cause analysis and post-incident remediation
- Strong analytical and problem-solving skills with the ability to assess risk and prioritise effectively
- Excellent written and verbal communication skills, with the ability to produce clear reports and present findings to diverse audiences
- Familiarity with audit coordination and compliance assessment processes across regulatory or industry frameworks
- Ability to work both autonomously and collaboratively within a multidisciplinary team
## Preferred Qualifications
- Relevant industry certifications such as CISSP, CISM, CISA, CompTIA Security+, or CEH
- Experience working within Australian Government security frameworks or with protective security requirements
- Familiarity with the Australian Signals Directorate (ASD) guidelines and the Information Security Manual (ISM)
- Postgraduate qualifications in Cyber Security, Risk Management, or a related field
- Experience with security information and event management (SIEM) platforms or other security tooling
- Prior exposure to governance, risk, and compliance (GRC) platforms or tools
## Why Join Us?
- Be part of a collaborative and forward-thinking team that values innovation, continuous learning, and genuine contribution to meaningful security outcomes
- Access ongoing professional development opportunities, including support for industry certifications and training programmes
- Enjoy a flexible working environment that supports work-life balance through hybrid arrangements and adaptable scheduling
- Contribute to high-impact work that directly protects critical systems and supports the organisation's strategic objectives
- Competitive remuneration package with clear pathways for career growth and advancement within the cyber security function
## Job Details
- Job Type: Full-time, Permanent
- Work Schedule: 8-hour shift
- Salary: $70,000 – $120,000 per year + Super
Job Types: Full-time, Permanent
Pay: $70,000.00 – $120,000.00 per year
Benefits:
Application Question(s):
- Are you currently in Australia?
- Are you looking for visa sponsorship?
- How many years of experience do you have?
Work Location: Hybrid remote in Sydney NSW 2000
