Amentum is a leader in global engineering, project management and solutions integration, trusted to modernise the most critical missions anywhere in the world. Driven to create a safer, smarter, cleaner world, we innovate as a team of inventive doers passionate about making a difference. Underpinned by a strong culture of ethics, safety and inclusivity. Amentum is fiercely committed to operational excellence and successful execution.

Are you seeking a career that offers a healthy work-life balance, a friendly company culture, and engagement with a supportive community?

We’ll inspire and empower you to deliver your best work so you can evolve, grow and succeed – today and into tomorrow. We offer an exciting range of opportunities to develop your career within a supportive and diverse team who always strive to do the right thing for our people, clients and communities.

People are our greatest asset, and we offer a competitive package to retain and attract the best talent.

Our values stand on a foundation of safety, integrity, inclusion and diversity. We put people at the heart of our business, and we genuinely believe that we all succeed by supporting one another through our culture of caring. We value positive mental health and a sense of belonging for all employees.

Amentum is proud to be an Equal Opportunity Employer, please refer to our Enterprise Agreement and www.fairwork.gov.au for more information.

Role Title: Cyber Security Team Lead

Role Description:
The Cyberspace Operations Systems Program Office (COSPO) acquires and sustains military cyberspace operations systems to support the ADF mission in cyberspace.

The Cyber Security Manager is a member of the COSPO Engineering Support Team and works under the general guidance of the COSPO Deputy Chief Engineer.

The Cyber Security Manager is responsible for leading a team focused on cyber security risk mitigations across multiple Products internal to the COSPO; delivering support services, specialist advice and reporting against hardware/software vulnerability monitoring, cyber supply chain risk management, Defensive Cybersecurity, incident response and ad-hoc specialist consultation.

The internal products are high risk, of smaller scale and complexity, with use cases different than traditional enterprise systems. The Cyber Security Team is small, requiring a wide breadth of skills and knowledge, rather than high volume throughput and strict roles supporting three Product Teams internal to COSPO.

The member is accountable for ensuring they have knowledge of and compliance with relevant financial and legislativeframeworks, Commonwealth Government decision-making, and Defence's directives and policy requirements.

Key Responsibilities:
- Conduct of vulnerability management activities, stakeholder communications and reports across all COSPO Products (both SW and HW components)
- Maintenance and execution of the Cyber Supply Chain Risk Management Plan
- Management and further development of both SIEM capabilities and SIEM analysts.
- Leadership of threat hunt planning, execution and reporting
- Cyber security operations of COSPO products including development and maintenance of
Standard Operating Procedures
- Analysis and application of Cyber Threat Intelligence (CTI) to COSPO Products
- Cyber Security stakeholder engagement within broader Defence Digital Group and Defence Department
- Leadership of one Cyber Security Specialist and technical control of Product Team GRC
personnel
- Facilitation of internal Cyber Security training up to 80 people within COSPO
- Maintaining contemporary knowledge of strategic cyber security issues and threats, and
subsequent education or awareness briefings for COSPO personnel
- Specialist ICT security advice into Product Team design, development and test activities
- Incident Response Plan execution and maintenance(IRP)

Qualifications:

Essential:
- Cert IV (or equivalent) in either Cyber Security or Intelligence Operations or Security and
Risk Management.
- Certified SAFe® Practitioner (mandatory for all COSPO personnel - can be completed
upon engagement).

Desirable:
- Degree qualification in Cyber Security
- CISM, CISSP, SSCP or other equivalent certifications
- Specialist cyber security certifications (e.g. SANS or equivalent)
- Information security Registered Assessors Program (IRAP) certification

Skills and Experience:

Essential:
- ICT Security Governance, Risk and Compliance (GRC) or equivalent experience
- Open-source intelligence analysis, risk assessments and technical reporting
- 'SOC- like Cyber Incident response, as both an analyst and manager
- Threat modelling, threat hunt planning and execution
- Security Information and Event Management (SIEM) optimisation and tuning
- Supply chain risk assessments and reporting
- Vulnerability assessment and management

Desirable:
- Have held a Security Operations Centre (SOC) role
- MITRE ATT&CK experience
- SCAP, STIG and CIS standards experience
- Agile / Scrum experience
- DevSecOps and CI/CD pipeline security
- Network and host digital forensics
- SIEM design and deployment
- Containerisation security controls and logging
- Australian military or Department of Defence experience
- Australian intelligence organisational collaboration / experience

Required Security Clearance Level: NV2

Location: This is a Canberra-based position located in the ACT, primarily at 25 National Circuit, FORREST, but also Whyalla St Facility, FYSHWICK.

Weekly Hours: 40