Cyber Security Specialist | Brisbane

Cyber Security Specialist

Posted on 01-Jul-2026
Application Close Date: 31-Jul-2026
Location:
Brisbane
Category:
Engineering / Technical
Position Type:
Permanent
Job Reference:
BOE/1934259
Attachments:
Note clipNo File Attached
Share This:

About Insitu Pacific

Insitu Pacific delivers industry-leading uncrewed aerial system (UAS) services to Australia and the Asia-Pacific region. Our expertise, operational experience, and knowledge has established Insitu Pacific as a key provider of end-to-end advanced multi-domain ISR solutions.

Since 2009, our people, partnerships, suppliers and local flight testing and training facilities have effectively supported defence, commercial and civil customers. We are committed to maintaining and further developing our local supply chains and supporting Australia's sovereign capability as a vital component to a strong Australian defence industry sector.

The Opportunity

The Cyber Security Specialist independently applies advanced cyber security principles, standards and practices while working collaboratively across a multi-discipline team to ensure our products are suitably engineered to meet expected cyber and security threats throughout their lifecycle. This role develops and implements security measures, drafts and maintains compliance documentation, and works with customer on achieving cyber security compliance requirements. The role requires experience in cyber security practices and a strong understanding of security protocols, enhance the organisation's security posture under guidance from the Senior Cyber Security Specialist.

Responsibilities

  • Provide specialist input to all stages of the systems engineering and product design processes, ensuring that secure-by-design principles and security controls contained within the ISM and DSPF are incorporated into the system (requirements, design, build and test).Conduct comprehensive testing and verification of applicable ISM and DSPF cyber security controls that are implemented into the system design (verification testing, not penetration testing).
  • Write reports based on the above Objective Quality Evidence to support verification of the cyber security controls as part of the overall V&V program.
  • Draft and release applicable System Security Documentation IAW Commonwealth Cyber Security Assessment and Authorisation (CSAA) framework.
  • Support the accreditation effort on behalf of IPL project teams, working with the Project Management Team, Commonwealth and security assessor to remediate any POAM action items.
  • Provide advice to the engineering team on proposed configuration changes (including patching) and their impact on system security and accreditation.
  • Identify, assess and mitigate Cyber Security Risks on the system, develop and update risk assessment documents and registers, and stay abreast of new vulnerabilities that arise through vendors and ACSC alerts.
  • Work with end users to ensure security design features are suitable to allow the system to meet operational needs whilst still complying with the rules outlined in the ISM and DSPF.

Experience/Qualifications

Essential:Tertiary qualification in Computer Science, Information Technology, Cyber Security, and six or more years' related work experience, or an equivalent combination of education and experience

  • Knowledge of security tools and technologies, including Standard Operating Environments (SOE), Tactical Data Links, SATCOM, and encryption methods (at rest, TLS, Digital Signatures and sanitisation methods).
  • Strong working knowledge of Australian Defence security frameworks, Australian Signals Directorate (ASD) Australian Cyber Security Centre (ACSC) Information Security Manual (ISM) and the Defence Security Principles Framework (DSPF).
  • Australian Citizen who currently holds or is eligible for Australian Security Clearance to NV1 level.
  • Experience with the following System Security Documentation:
    • System Security Plan and Annex
    • Security Risk Management Plan
    • Cyber Security Standard Operating Procedures
    • Incident Response Plans
    • Patch Management Plans
    • Continuous Monitoring Plans
    • SCCG

Search Tips

Close