Risk Manager - Cyber Security Group, Digital Technology and Innovation

Summary about this job

Detail information about job Risk Manager - Cyber Security Group, Digital Technology and Innovation. Terms and conditions vacancy

The Risk Manager is a specialist role that provides a centralised systematic approach to Information Security and Risk Management for the New South Wales Police Force (NSWPF). Responsible for the day to day management of the Information Security Management System, reporting on the systems and processes that support NSWPF ISO 27001:2013 certifications.
 
Key accountabilities

• Ensures adherence to NSW Government and Commonwealth Standards, Regulations and Policies regarding Risk Management and Information Security (including but not limited to, ISO 31000:2009 Risk
• Management, ISO/IEC 27001:2013 Information Security, Australian Signals Directorate Protective Security Policy Framework).
• Provision of advice to NSWPF employees regarding the status and contents of Security Policy, Processes and Standards in an efficient and knowledgeable manner.
• Maintain the IT Security Risk Management Framework and populate the IT Risk Register.
• Develop and maintain IT Security Policy, Processes and Standards for NSWPF, Compile, submit and present Policy justification documents to ICT Governance Boards.
• Maintain compliance with the NSW Digital Information Security Policy by ensuring ongoing management and oversight of the ISO27001 certification.
• Conduct Risk Workshops as required and maintain and develop the Information Security Awareness program.
• Conduct risk assessments, coordinate resulting risk treatment plans, assist with mitigation planning for identified risks and monitor / review risk lifecycle.

Key challenges

• Maintain currency and applicability of subject matter knowledge and the links to legislative, legal and statutory changes relating to information security and management.
• Ensuring ongoing compliance with security practices.
• Adapting risk management strategies to accommodate emerging ICT systems.

• Computer Systems Officer Level 4
• Ongoing Full-Time
• Parramatta

 
JOB NOTES:
 
Essential requirements - candidates must:

• have tertiary qualifications in a relevant discipline or equivalent experience.
• have a good understanding of information security controls; ISMS standards such as ISO27001/2, ISO 31000.
• be able to maintain and provide 24 hour/7 days per week support for security incident response.
• be able and willing to work outside normal business hours when required for system compliance testing.
• obtain and maintain the requisite security clearances for this position.
• hold a current driver’s licence with no traffic offences recorded on their driving history within the last six (6) months.

 
To be eligible to apply for this role, you must meet one of the following statuses:

• an Australian Citizen
• a permanent Australian resident or citizen of New Zealand

 
Applications from Australian Aboriginal and Torres Strait Islander people are encouraged.
 
This recruitment may be used to create a Talent Pool for similar future roles (ongoing or temporary) that may arise over the next 12 months.
 
For your application to be considered, you must:

• attach a cover letter;
• attach an up-to-date CV/Resume; and
• address each of the Target Questions in the text boxes provided in the online application or attach as a separate document. Please limit your response to no more than 1 page per question.

 
Please do not attach copies of Qualifications, Certificates or documentation (other than a Resume/CV) - you can bring these if called for interview.
 
Prior to commencement, the successful candidate will be required to undergo a rigorous National Police Check (criminal history) and obtain and maintain a Security Clearance as determined by the NSW Police Force. For further information on the Security Clearance process click here
 
Applications can only be submitted electronically online via the I Work for NSW website.
 
For information on applying for roles with the NSW Police Force click here
 
To view or download the Role Description click here
 
APPLICATIONS CLOSE: SUNDAY 5 AUGUST 2018 at 11.59pm
Essential requirements - candidates must:

• have tertiary qualifications in a relevant discipline or equivalent experience.


• have a good understanding of information security controls; ISMS standards such as ISO27001/2, ISO 31000.


• be able to maintain and provide 24 hour/7 days per week support for security incident response.


• be able and willing to work outside normal business hours when required for system compliance testing.


• obtain and maintain the requisite security clearances for this position.


• hold a current driver’s licence with no traffic offences recorded on their driving history within the last six (6) months.