Cyber Security Compliance Specialist

Harrison McMillan is seeking a Cyber Security Compliance Specialist to work with a Federal Government Department to identify and consider cyber security risk and appropriate remediation activities.

In this role you will be responsible for providing security advice in line with the department processes, policies and security frameworks including the Information Security Manual (ISM), Protective Security Policy Framework (PSPF) and Information Security Registered Assessors Program (IRAP).

To be successful you will need to have demonstrated extensive experience working as a security compliance specialist, with knowledge of the ISM, PSPF and IRAP processes, and the communication skills necessary to provide advice and supporting documentation associated with the department’s security framework. You will work closely with technical and non-technical team members to achieve required outcomes.

• Lead and produce (write) quality security accreditation documentation including Statement of Applicability (SOA), System Risk Management Plan (SRMP), System Security Plan (SSP), and Certification Reports 

• Effective management of AtOF assessments ensuring they are completed within agreed timeframes while managing multiple assessments at any given time 

• Effectively communicating security concepts and controls to technical and non-technical stakeholders 

• Providing considered security advice to stakeholders, team members and Executive 

• Taking direction from the Cyber Security Manager and IT Security Advisor while working within the Cyber team 

• Act promptly to resolve compliance issues and address vulnerabilities, collaborating with relevant teams to implement relevant controls and improvements 

• Facilitating and negotiating discussions to an agreeable decision. 

• Completing security assessments in the departments IT service management risk system 

• 5 years of Governance, Risk and Compliance experience

• Demonstrated experience in writing and managing risk assessments per ISM compliance

• Experience working in large complex ICT environments with a focus on Microsoft technologies, and the ability to consult with a range of both technical and non-technical personnel

• Extensive knowledge of Australian Government Policies and frameworks relating to Government Services

• Ability to handle multiple assessments at any given point and excellent attention to detail

This is a 12 month contract starting in January 2026.