Security Architect

Location Deakin
Discipline IT Executives
Job reference 176182
Salary Negotiable
Consultant email [email protected]

The agency advises senior decision-makers on serious and organised crime impacting the country. The National Criminal Intelligence System (NCIS) is delivering a whole-of-government federated information sharing environment to provide access to real-time criminal intelligence and information across state, territory, and federal jurisdictions. The capability is being delivered through an NCIS Program team comprised of national and federal agencies in conjunction with partner agencies at the Commonwealth and state and territory levels.

The agency requires an experienced Security Architect to work as part of the NCIS team.

The Specified Personnel will be responsible for providing the following deliverables including but not limited to:

  • Supporting the program in the definition of effective ICT Security capabilities and solutions to meet capability and business requirements;
  • Ensuring that theNCIS solution is fit for purpose from a security perspective and meets policies and compliance requirements including:
    • Information Security Manual (ISM) and Infosec Registered Assessors Program (IRAP);
    • National and federal security accreditation frameworks;
    • Partner security and compliance requirements;
  • Collaborating with Program and Enterprise Solution/System Architects and business stakeholders to 'drive holistic technology implementation across Value Streams';
  • Supporting architecture strategies including: Choice of technology, System/Solution Architecture Strategy, Development and Deployment Infrastructure Strategy, Inter-program collaboration, and Implementation Strategy;
  • Designing and supporting the implementation of key security capabilities for NCIS including: Federated Identity and Access Management, Gateways and Firewalls, Security Information and Event Management (SIEM), Intrusion Detection/prevention, Threat and Virus analysis, and Encryption (at rest and in transit) on Azure Cloud;
  • Coordinating security accreditation activities across the program;
  • Developing key security documents (SSP Annex, SSP, SRMP, SOPS) that underpin the security accreditation and architecture governance processes;
  • Identifying security risks and drivers and communicating to stakeholders how NCIS addresses these concerns;
  • Identifying innovative technology solutions and development initiatives and maintaining a high-level, holistic vision of this, working closely with national and federal stakeholders in these technologies and capabilities;
  • Providing leadership to development and business specialists in the project on the delivery of key security outcomes;
  • Designing and executing the transition of security management of NCIS into service with key national, federal, and other stakeholders;
  • Designing and documenting all security architecture components in the Technical Security Design;
  • Delivering quality Security Architecture deliverables as per the Security Accreditation Framework;
  • Providing effective and accurate advice supporting architectural decisions impacting technology selection, program scope, and solution design relating to security components;
  • Managing key architectural security risks;
  • Managing program security risks;
  • Managing security accreditation processes;
  • Ensuring alignment to enterprise security standards and strategies.

The Specified Personnel will also be responsible for producing the following deliverables, including but not limited to:

  • Design and documentation of all security architecture components;
  • Key supporting documents that underpin the security accreditation and architecture governance processes.

Specified Personnel will be expected to transfer skills and knowledge to departmental staff and ensure appropriate documentation is stored in accordance with the department's recordkeeping policy and practices.

Security Clearance Requirements

Seller personnel must:

  • Hold and maintain an Australian Government Security Vetting Agency (AGSVA) clearance to the minimum of Negative Vetting Level 1 (NV1) or be willing to undergo and obtain an AGSVA NV1 clearance.
  • Undergo and pass a pre-employment screening process (Organisational Suitability Assessment (OSA)) and maintain the OSA whilst engaged in the delivery of services.
  • As directed, complete a Deed of Confidentiality or Non-Disclosure Agreement prior to commencement or comply with processes required to engage the Specified Personnel under section 48 of the Australian Crime Commission Act (2002).