Multiple Senior ICT Security Specialist

Gateway Synergy is looking for highly experienced Systems Administrators for a government agency. An exciting opportunity is open for a rapidly growing project. Be part of a team that makes meaningful changes and improves Australian lives. 

The Role
The agency requires multiple EL1 equivalent ICT Security Specialists to fill positions across the organisation. A merit pool will be created for future positions that may arise. Must have either, NV1, NV2 and PV positions required. Candidates selected must hold a current AGSVA clearance to commence to contract with the agency. Please clearly indicate the level held within your responses. The agency may vary the first term of contracts to reflect current operational requirements, the first term of the engagement is at the discretion of the agency. The terms will vary from 12 / 15 and 18 months. ICT Security Specialists implement, manage and retire the infrastructure (including physical,
virtual, networking and cloud infrastructure) that supports digital services. They also undertake complex technical assessments. ICT Security Specialists will exercise a considerable degree of independence and perform a
subject matter expert role. They will exercise sound decision making and judgement to provide expert policy advice. They will have in-depth knowledge of the ICT service delivery function and are responsible for the development, implementation, compliance and review of policies and procedures relevant to their work within that function area. They will engage in very complex
problem solving and issues management and may coordinate and perform detailed or sensitive projects that impact on strategic, political or operational outcomes for the agency.

Key duties and responsibilities:

• Accountable to conduct security risk assessments and provide advice and guidance on the application and operation of procedural security controls.
• Responsible for ensuring that all identified breaches in information security are promptly managed according to the agency policies and procedures.
• Understand the security features and capabilities of current agency and industry accepted hardware and software products and provide advice to stakeholders.
• Use experience to explain systems security and the strengths and weaknesses that are relevant across the agency.
• Tailor communication style and language to provide guidance on security strategies to manage identified risks.
• Facilitate appropriate direction for the team by clearly communicating goals and objectives.
• Interpret security policy and contribute to the development of standards and guidelines that comply with the agency policy and procedures.
• Analyse and resolve identified security incidents in accordance with established procedures and recommend any required actions.
• Lead the application and compliance of security operations procedures and review information systems for actual or potential breaches in security.
• Build and sustain effective working relationships with team members and actively participate in teamwork and group activities.

The Candidate

Technical Skills:

• Certification as an Infosec Registered Assessors Program (IRAP) Assessor
• Experience ensuring technical systems adhere to Essential Eight, ISM, and PSPF frameworks
• Proven ability to communicate complex technical systems to non-technical audiences
• Excellent organisational & communication skills
• Proven record building, managing, & enhancing relationships with stakeholders
• Experience developing, managing, and implementing SOPs & procedures in support of security accreditation frameworks

Essential criteria

1. SCAD 3 - Security operations: Level 3 (SFIA) Investigates minor security breaches in accordance with established procedures. Assists users in defining their access rights and privileges. Performs non-standard operational security tasks. Resolves security events and operational security issues.
2. SCAD 4 - Security operations: Level 4 (SFIA) Maintains operational security processes and checks that all requests for support are dealt with according to agreed procedures. Provides advice on defining access rights and the application and operation of elementary physical, procedural and technical security controls. Investigates security breaches in accordance with established procedures and recommends required actions. Provides support and checks that corrective actions are implemented.
3. SCTY 4 - Information security: Level 4 (SFIA) Provides guidance on the application and operation of elementary physical, procedural and technical security controls. Explains the purpose of security controls and performs security risk and business impact analysis for medium complexity information systems. Identifies risks that arise from potential technical solution architectures. Designs alternate solutions or countermeasures and ensures they mitigate identified risks. Investigates suspected attacks and supports security incident management.
4. INAS 4 - Information assurance: Level 4 (SFIA) Performs technical assessments and/or accreditation of complex or higher-risk information systems. Identifies risk mitigation measures required in addition to the standard organisation or domain measures. Establishes the requirement for accreditation evidence from delivery partners and communicates accreditation requirements to stakeholders. Contributes to planning and organisation of information assurance and accreditation activities. Contributes to development of and implementation of information assurance processes.

Please provide a brief explanation of your experience covering these attributes. (Guide – 300 to 400 words)

Closing date vacancy:
Monday, 21 July 2025 • 11:59pm, Canberra time



If you would like to look at our other unlisted roles, you can find them at: https://gatewaysynergy.com.au/careers/ 
 
You must submit a CV on application prior to a phone call with Wiliana on 0482 074 845

#SCR-josh-seaman