Cyber Security Manager

About the Role

Join Downer Professional Services and play a key role in delivering complex defence and national security projects that safeguard Australia’s future. The role supports the Strategic High Frequency Communications (SHFC) Program, which delivers the Defence High Frequency Communications System (DHFCS) for critical joint operations. In this position you will conduct cyber and information security risk assessments, develop and maintain security standards and accreditation documentation, lead incident response and investigations, coordinate accreditation activities with primes and stakeholders, and strengthen SHFC security governance by improving processes, policies, and assurance practices. • Conduct comprehensive cyber and information security risk assessments, business impact analyses, and control evaluations for SHFC systems. • Develop, review, and advise on security standards, guidance, accreditation documentation, and program‑specific security frameworks. • Lead incident response and investigations, providing corrective recommendations and policy amendments. • Coordinate accreditation activities with primes and stakeholders to ensure supplier compliance with DISP and security obligations. • Enhance SHFC security governance by improving processes, policies, and assurance practices and communicating risks to leadership. • Integrate cyber threat intelligence into program risk posture and security decision‑making. • Communicate complex security issues clearly to diverse stakeholders, both verbally and in writing. • Maintain a current NV1 (or higher) security clearance; ITAR compliance may be required.

Key Responsibilities

• ▸risk assessment
• ▸security standards
• ▸incident response
• ▸accreditation
• ▸security governance
• ▸threat intelligence

What You Bring

Applicants need relevant tertiary qualifications in Information Security, Computer Science or Engineering, along with certifications such as CISSP, CISM, CRISC or CISA, and demonstrable experience in cyber risk assessment, control evaluation, incident response, and threat‑intelligence integration; a current NV1 (or higher) security clearance is required and ITAR compliance may be necessary. • Hold relevant tertiary qualifications in Information Security or related fields and certifications such as CISSP, CISM, CRISC, or CISA. • Demonstrated experience in cyber security risk assessment, control evaluation, and incident response within Defence frameworks.

Requirements

• ▸cissp
• ▸cism
• ▸crisc
• ▸cisa
• ▸risk assessment
• ▸nv1 clearance

Benefits

Downer offers meaningful work protecting Australia, professional development opportunities, employee perks, veteran support, and a diverse, inclusive culture that celebrates varied perspectives and backgrounds. As a WORK180 Endorsed Employer, Downer provides flexible work arrangements, inclusive leadership, and recruitment support to help candidates put their best foot forward. • Access professional development programs, career mapping, and Communities of Practice. • Enjoy employee perks including discounts on healthcare, retail, vehicles, and more. • Benefit from veteran support such as up to 20 days of Reservist Leave. • Join an inclusive workplace that celebrates diversity and offers flexible work arrangements.

Work Environment

Onsite