Critical Infrastructure Security Consultant (CISC) – Expression of Interest

A critical infrastructure security consultant is required for ongoing critical infrastructure work for Australian State, Local, Federal Government and Private sector clients. The applicant should have a detailed understanding of critical infrastructure security concepts, technologies, sector specific goals and be able to provide subject matter expertise to clients across several cyber security disciplines in across multiple verticals.

AGSVA security clearances would be beneficial to this role but are not mandatory however the candidate should be committed to understanding Australia’s Critical Infrastructure Security goals and meet the highest standards of integrity, honesty and confidentiality required of personnel working in the critical infrastructure sector.

Responsibilities

• Provide customers subject matter expertise across relevant critical infrastructure cyber security standards, processes, technologies and strategies ensuring that these concepts can be communicated to clients both verbally and via detailed documentation
• Gather data regarding customer requirements through detailed interviews with stakeholders ensuring that requirements are accurately captured
• Develop reports and associated high level documentation analysing customer processes, technologies, strategies and goals
• Manage client-side relationships across multiple client deliveries ensuring quality, time and cost constraints are met
• Present findings and analyses to client meetings as part of advisory and delivery functions

Requirements

• Extensive experience in providing advisory services for clients in primarily Critical Infrastructure sectors
• Extensive knowledge of critical infrastructure standards and processes including: Critical Infrastructure focused security controls/products, NIST 800-82, IEC-62443, IEC 62264, AESCSF, NERC CIP in addition to enterprise I.T security standards ISO 27001, NIST 800-53 etc.
• Experience in Critical Infrastructure cyber security controls and products across several vendors and technologies
• Experience in understanding IT/OT convergence concepts and be able to provide strategic guidance for these concepts
• Understand security architecture standards such as SABSA in the context of providing risk advice to clients
• A sound knowledge of audits against standards and maturity models
• Security clearances not essential but would be beneficial

The applicant should also have experience in any of the below industry sectors and be able to apply existing knowledge to other sectors including:

• Space and Aerospace
• Transport
• Rail
• Mining
• Utilities
• Industrial Manufacturing

Rewards

• Access to Anchoram’s panels, corporate memberships, and client relationships
• Visibility into Anchoram Consulting engagements and opportunity pipeline
• Options to switch between contracting and consulting modes of engagement
• Access to firm-sponsored professional and social events
• Negotiable rates depending on available opportunities
• Profit-share options available under the Anchoram Opportunity Owner Scheme
• Flexible location and schedule depending on contract particulars