Title:

Title:

IT Security Officer

We are a company of innovators, thinkers, creators, explorers, volunteers and dreamers who all share one goal — to improve the world.

We deliver science, technology and engineering solutions to governments and companies around the world. KBR employs approximately 37,000 people worldwide with customers in more than 80 countries and operations in over 30 countries.

For 65 years, KBR and its heritage companies are proud to have delivered some of Australia’s largest and most complex projects.

With around 2,000 employees in 6 primary offices throughout Australia, we are committed to social and environmental sustainability and delivering projects with a digital mindset driving innovation within our business and for our customers.

We help ensure mission success on land, in the air, at sea, in space and cyberspace for our defence customers.

From individual technologies and services to comprehensive project delivery and mission execution, no other company can match the breadth and depth of KBR.

KBR comprises a diverse team who provide a broad spectrum of capabilities across Australia and the Asia Pacific. Our proven project teams readily address complex and multi-disciplinary activities, providing low-risk and cost-effective solutions to the defence force.

Learn more about our business here.

The Opportunity:

KBR is seeking an experienced IT Security Officer to work within our dynamic MSP Aerospace team out of RAAF Base Amberley, Brisbane.

Under general supervision, the IT Security Officer is responsible for ensuring compliance with the Australian Government Information Security Manual (ISM), Protective Security Policy Framework (PSPF), and Defence Security Principles Framework (DSPF), whilst developing, maintaining, and enforcing local ICT security policies, standard operating procedures (SOP’s), and system usage guidelines for our Aerospace customer.

The IT Security Officer will identify, assess, and mitigate cybersecurity risks to ensure the continuity of operations for our Aerospace customer. An integral part of this role will be promoting a culture of security awareness and compliance across the organisation.

Responsibilities:

• Cybersecurity Governance and Compliance
  • Assist with the preparation and management of security authorisation packages, including System Security Plans (SSP), risk assessments, and system security assessments.
• Technical Security Oversight
  • Monitor system configurations, oversee vulnerability management across the organisation
  • Enforce Australian Signals Directorate (ASD) system hardening guidelines for all applicable systems.
• Risk Management and Incident Response
  • Assist the IT Security Manager in the coordination of the local response to local cybersecurity incidents and breaches.
  • Conduct security audits, and coordinate remediation efforts with internal and external stakeholders.
• Cyberworthiness and Mission Integration
  • Support the integration of Cyberworthiness into airworthiness frameworks.
  • Participate in system design reviews and change management boards to ensure security-by-design principles.
• Liaison and Coordination
  • Serve as a primary point of contact for cyber security matters within the organisation.
  • Collaborate with external cyber security stakeholders.
  • Assist in security aspects of capability acquisition, and audits.

As the ideal candidate you will bring:

Essential:

• Demonstrated knowledge of cyber security frameworks and standards applicable to Defence and Australian Government environments (ISM, PSPF, ISO/IEC 270001).
• Experience in the implementation and management of ICT security controls.
• Strong understanding of risk management practices and security governance.
• Ability to interpret and apply Defence policies, technical manuals, and security directives.
• Proven ability to and apply Defence policies, technical manuals, and security directives.
• Proven experience in stakeholder engagement and cross-functional team collaboration.
• Familiarity with Cyberworthiness, system assessment and authorisation, and mission assurance concepts.

Desirable:

• Formal qualifications in Cyber Security, Information Technology, or a related discipline.
• Industry certifications such as CISSP, CISM, CISA, Security+, or equivalent.
• Experience in Defence ICT environments.

All candidates will be required to hold and maintain an active Negative Vetting 1 Defence Security Clearance. Only candidates holding an NV1 Clearance or above should apply.

What we will offer you:

· A workplace culture certified as a Great Place To Work

· Flexible working

· Competitive salary (including annual reviews)

· Paid parental leave

· Income protection

· Corporate rewards

· Salary packaging/Novated leasing

· Employee stock purchase plans

· Flu shots, skin checks and discounted private health insurance

· Career development: Online learning, mentorship and career pathways

If you’re ready to shape tomorrow, let’s get started. Apply Now!

KBR acknowledges the Traditional Custodians of Country throughout Australia and their continuing connections to land, sea, community and culture. We pay our respects to Elders past and present.

As a Major Service Provider of the Australian Defence Force, an AGSVA security clearance will be required and compliance to International Traffic in Arms Regulations (ITAR). As such, our hiring decisions are based on the key requirements of each role and candidates are selected based on their unique strengths and experiences.