Security Operator -21AMSA042

AMSA is looking for a Security Operator to analyse and deliver IT security outcomes as directed by the IT Security Lead. Duties include:
• Working with AMSA’s IT Managed Services Provider, other third-party IT service providers and relevant AMSA staff, investigate and analyse security vulnerabilities and advisories.
• Daily monitoring and management of AMSA's IT security mailboxes
• Conduct in-depth analysis and research to support resolution of security incidents and investigations
• Monitoring, maintaining and enhancement of AMSA’s IT security monitoring and vulnerability scanning systems
• Investigate and analyse AMSA's environment to discover security trends and patterns
• Identify IT security gaps; evaluating, recommending and implementing improvements
• Provide input into the IT Security Roadmap
• Deliver tasks allocated from the IT Security Roadmap
• Conduct system security reviews, vulnerability analyses and risk assessments using the Information Security Manual (ISM) control framework
• Provide guidance and direction on the security needs of new information, communication and technology solutions and ensuring architectural principles are applied during design to reduce risk.
• Conduct analysis and research to advise on current and future IT security related technologies
• Assist in the development and updating of AMSA's security policies, patterns, guidelines, playbooks and standards
• Monitoring and ensuring compliance with AMSA's security policies, patterns, guidelines, playbooks and standards

****NOTE TO SELLERS: PLEASE READ BEFORE SUBMITTING QUESTIONS****

Based on common questions to our roles, the following should be used as a guide. Agencies that submit questions that are addressed below will not be answered.

Applicants should understand AMSA's business and our mission. The Project teams are small resource groups working closely with other business teams and stakeholders, so ability to perform cohesively in this space is key. Candidates MUST only be proposed if they have a genuine interest in working in this environment, be considered a good fit for a high performing team in a small organisation and have been vetted against the must have and desirable criteria.

Responses MUST include statements against all the criteria. Candidates that do not address the criteria in their submission may not be considered. Agencies should not submit candidates that do not meet ALL the mandatory criteria.

This role is CANBERRA BASED. AMSA will not consider options for candidates to work outside of the ACT. Pending return to work status, the role is ON SITE in Braddon.

This is a new position, with no incumbent and is not a market test.

Questions regarding rate, budget and margins will not be answered. A rate has deliberately not been set. Vendors should price candidates competitively for the Canberra market. AMSA will use the Digital Marketplace rate guide to determine a suitable average rate.

Timeline for start is a guide only and will depend on evaluation, contract and notice period.