We require an experienced, pro-active and versatile SecDevOps Architect to work with our Research projects team. Deliverables comprise Security Assessments, Security Applicability Assessments, and Operating Procedures focusing on Security related requirements from the Australian Government and other bodies.

The Research Security Analyst will work with the Project Manager, Principal Architect, Vendor and internal SMEs to deliver high quality artefacts that align with Federal Government security reference architecture. In some cases, this role will be accountable for delivering reference artefacts for other areas within DST.

The Research Security Analyst will have (Essential):

• Experience working in an agile SecDevOps environment.
• Working with Information Security teams and Product Owners to achieve alignment between information security and business change objectives.
• Architecting/designing and providing implementation patterns of security controls throughout solution delivery lifecycle.
• Designing and developing generic security patterns and guidelines to enable applications stay compliant with an understanding of how to integrate them Application and DevOps processes and CI/CD pipelines from early stages of the lifecycle.
• Experience with Kubernetes, Docker, and related technologies.
• Contributing features to internally developed Information Security tools, and integrate those tools into the Security DevOps pipelines.
• Driving continuous improvement to both the Security DevOps pipelines and processes, and to the Information Security tools, services, and processes.
• Previous experience working for a State or Federal government agency

The Research SecDevOps Architect will have (Desirable):

• Exposure to Information Security Manual(ISM), Protective Security Policy Framework (PSPF) and/or Defence Security Principles Framework (DSPF).
• Experience producing use cases and playbooks for SecDevOps platforms.
• Prior experience in a SecDevOps team in a medium to large environment with managing Linux and Windows platforms, and experience in software development
• Contemporary DevOps design and technologies.

The Research SecDevOps Architect will be Responsible for:

• Contributing to establishment of significant stakeholder engagement, both online and face to face
• Exploring approaches that both satisfy requirements and work within constraints
• Recommending and documenting an approach, plus recording other approaches considered, in accordance with a template
• Work through the approach approval process including responding to feedback and suggested revisions
• Formulating and documenting a detailed design in accordance with a template
• Work through the design approval process including responding to feedback and suggested revisions
• Provide advice and clarification as the project progresses

Ability to attain Australian Government NV1 clearance is required