Chief Information Security Officer (Ses Band 1)

The Australian Federal Police (AFP) is a key player in the Australian security landscape, rising to complex challenges and staying a step ahead to protect Australians as new threats emerge. We break new ground every day and a career as a member of the AFP requires a diversity of skills and knowledge, as well as an ability to combine innovation with policing to create intelligent action. We: Pride our self on demonstrating leadership and agility in a dynamic operating environment; Are intelligence-led, ethically and values-driven, embracing diversity and inclusion; Value trust, respect, accountability, integrity; Are committed to excellence in service to the Australian community and in working with each other; and Have the brightest minds to play a critical role in protecting Australia and Australians by outsmarting serious, complex, international and organised crime. To continue as one of the most adaptive, effective and advanced police forces in the world, the AFP is seeking a suitably qualified professional for the role of Chief Information Security Officer The key duties of the position include As an active contributor to the Chief Information Officer (CIO) Command, Chief Operating Officer Portfolio and AFP Senior Leadership team, you will lead the Cyber Security Branch in: Shaping and executing the Cyber Security Strategy including the delivery of cyber security operations and the associated capability uplift; Management and maturing of the information security governance structure through the development and implementation of security policies. Monitoring threats and incidents and providing clear advice and direction to the CIO regarding the organisational Cyber Security Alert Level (CYBERSAL) and the mobilisation of associated controls; Working collaboratively across AFP commands and through governance committees, to ensure the consistent application of policies and standards across all technology projects, systems and services; Leading and facilitating information security risk assessments and effective risk management processes that effectively balance risk mitigation with operational requirements; Championing a Cyber-aware Security culture across the organisation including (where necessary) security awareness training and command performance metrics; Providing regular reporting on the status of cyber security to the Security Committee, Audit & Risk Committee and other Executive Governance forums; Ensuring adherence to mandatory external reporting and compliance regimes including through engagement with Government and industry forums and stakeholders. #J-18808-Ljbffr