Description:
The purpose of the role is to assist Cyber Security Governance Risk and Compliance Specialist and CISO during execution, establishment and delivery of a Cyber Security Program for the department and its cluster agencies.
Responsibilities
- To support the governance team in establishing Cyber Security Framework, Governance program, Cyber Security plan, Incident Response Plans, and Security Policies, Procedures, and Guidelines.
- Working with GRC specialist and other cluster agency stakeholders to gather details of cyber security risk and incorporate into the risk register
- Maintain risk register on an ongoing basis and update stakeholders on risk rating variance
- Work with stakeholders across the department to gather risk related artefacts.
- Help with completion of cyber security compliance reporting across the cluster.
- Help GRC specialist with related data for preparing reports to the board.
Key knowledge and experience
- 2-3 + years experience in a Cyber Security Governance Risk Compliance role.
- Knowledge of security frameworks like NIST, PSPF and ISM
- Strong communication skills
- Knowledge of cyber security frameworks, governance programs, cyber security plans, incident response plans and cyber security policies.