POSITION DESCRIPTION

Similar documents
POSITION DESCRIPTION

POSITION DESCRIPTION

POSITION DESCRIPTION

Position Description. Engagement Manager UNCLASSIFIED. Outreach & Engagement Information Assurance and Cyber Security Directorate.

Position Description. Computer Network Defence (CND) Analyst. GCSB mission and values. Our mission. Our values UNCLASSIFIED

Position Description IT Auditor

Security Director - VisionFund International

Cloud solution consultant

NSPCC JOB DESCRIPTION

Cloud solution consultant

PERSON SPECIFICATION. Cyber PROTECT Officer. Job Title: Status: Established

New Zealand Certificate in Contact Centres (Level 3)

Information Technology Branch Organization of Cyber Security Technical Standard

New Zealand Certificate in Regulatory Compliance (Operational Practice) Level 4

Security and Privacy Governance Program Guidelines

SAVANNAH LAKES VILLAGE PROPERTY OWNERS ASSOCIATION, INC. JOB DESCRIPTION

Canada Life Cyber Security Statement 2018

Technical Information Assurance Team Structure. and Role Description

Todmorden High School Job Description

Position Description For ICT Systems Officer Information, Technology and Communication Department Hobart

GOVERNANCE, RISK MANAGEMENT AND COMPLIANCE TRENDS BY FCPAK ERIC KIMANI

New Zealand Certificate in Regulatory Compliance (Core Knowledge) (Level 3)

Chartered Membership: Professional Standards Framework

Digital Health Cyber Security Centre

Information Security Controls Policy

BUSINESS CONTINUITY MANAGEMENT PROGRAM OVERVIEW

PIPELINE SECURITY An Overview of TSA Programs

Position Description For ICT Officer Support Information, Technology and Communication Department Hobart

Principles for a National Space Industry Policy

UNCLASSIFIED. National and Cyber Security Branch. Presentation for Gridseccon. Quebec City, October 18-21

MNsure Privacy Program Strategic Plan FY

IQ Level 4 Award in Understanding the External Quality Assurance of Assessment Processes and Practice (QCF) Specification

IT SECURITY OFFICER. Department: Information Technology. Pay Range: Professional 18

THE TRUSTED NETWORK POWERING GLOBAL SUPPLY CHAINS AND THEIR COMMUNITIES APPROVED EDUCATION PROVIDER INFORMATION PACK

Government Resolution No of February 15, Resolution: Advancing National Regulation and Governmental Leadership in Cyber Security

ASSISTANT ICT NETWORK MANAGER. JOB DESCRIPTION Support Staff

New Zealand Customs Service: Managing Trade Assurance capability risks

U.S. Department of Homeland Security Office of Cybersecurity & Communications

PREPARE FOR TAKE OFF. Accelerate your organisation s journey to the Cloud.

the steps that IS Services should take to ensure that this document is aligned with the SNH s KIMS and SNH s Change Requirement;

Marine Institute Job Description

Strategic Security Analyst

National Initiative for Cyber Education (NICE) and the Cybersecurity Workforce Framework: Attract and Retain the Best in InfoSec.

NEW INNOVATIONS NEED FOR NEW LAW ENFORCEMENT CAPABILITIES

National Diploma in Building Control Surveying (Small Buildings) (Level 5)

SALARY $ $72.54 Hourly $3, $5, Biweekly $8, $12, Monthly $103, $150, Annually

Qualification details

Global Statement of Business Continuity

ACCREDITATION: A BRIEFING FOR GOVERNMENTS AND REGULATORS

IT MANAGER PERMANENT SALARY SCALE: P07 (R ) Ref:AgriS042/2019 Information Technology Manager. Reporting to. Information Technology (IT)

NZ Certificate in Credit Management (Level 4)

Protecting information across government

Cyber Security Strategy

EUROPEAN ICT PROFESSIONAL ROLE PROFILES VERSION 2 CWA 16458:2018 LOGFILE

METHODOLOGY AND CRITERIA FOR THE CYBERSECURITY REPORTS

KENYA SCHOOL OF GOVERNMENT EMPLOYMENT OPORTUNITY (EXTERNAL ADVERTISEMENT)

IS Audit and Assurance Guideline 2002 Organisational Independence

Global Security Advisor

Manager, Infrastructure Services. Position Number Community Division/Region Yellowknife Technology Service Centre

New Zealand Government IBM Infrastructure as a Service

ROLE DESCRIPTION IT SPECIALIST

The Government IT Profession: Embedding IT Professionalism in Your Organisation

IT Governance ISO/IEC 27001:2013 ISMS Implementation. Service description. Protect Comply Thrive

Qualification details

Qualification details

External Supplier Control Obligations. Cyber Security

CYBER RESILIENCE & INCIDENT RESPONSE

Dated 3 rd of November 2017 MEMORANDUM OF UNDERSTANDING SIERRA LEONE NATIONAL ehealth COORDINATION HUB

National Certificate in Public Sector Services (Client/Customer Service) (Level 3)

Workshop Item 1 - ISO 9001: 2008 migration

STRATEGIC PLAN. USF Emergency Management

Qualification details

Call for Expressions of Interest

SECURING THE UK S DIGITAL PROSPERITY. Enabling the joint delivery of the National Cyber Security Strategy's objectives

NATIONAL INFRASTRUCTURE COMMISSION CORPORATE PLAN TO

SYMANTEC: SECURITY ADVISORY SERVICES. Symantec Security Advisory Services The World Leader in Information Security

National Diploma in Building Control Surveying (Medium and Large Buildings) (Level 6)

Recruitment Pack Marketing Officer Battersea Dogs & Cats Home

20 February Accreditation of Assessment Centres

Big data privacy in Australia

Chapter 18 SaskPower Managing the Risk of Cyber Incidents 1.0 MAIN POINTS

Unit 3 Cyber security

ehealth Ministerial Conference 2013 Dublin May 2013 Irish Presidency Declaration

Business Continuity Management Program Overview

Google Cloud & the General Data Protection Regulation (GDPR)

Typical Training Duration 11 months

Aon Service Corporation Law Global Privacy Office. Aon Client Data Privacy Summary

Fundamentals of Cybersecurity/CIIP. Building Capacity: Using a National Strategy & Self-Assessment

Building resilience. Delivering assurance.

M&A Cyber Security Due Diligence

Building a BC/DR Control Library and Regulatory Response Program

FIRE REDUCTION STRATEGY. Fire & Emergency Services Authority GOVERNMENT OF SAMOA April 2017

National Policing Community Security Policy

European Standards- preparation, approval and role of CEN. Ashok Ganesh Deputy Director - Standards

Seven Requirements for Successfully Implementing Information Security Policies and Standards

Cyber Security Law --- How does it affect the business operations in China? Xun Yang Of Counsel, Commercial IP and Technology

PRC Cyber Security Law --- How does it affect a UK business? Xun Yang Of Counsel, Commercial IP and Technology

ICT30610 Certificate III in Broadband and Wireless Networks Qualification Notes

PROFILE FRANCIS KAITANO. Francis Kaitano is a strategic, innovative, delivery focused Cyber Security professional.

TECHNICAL NOTE RECOGNITION OF APPLIED CIVIL ENGINEERING SKILLS

Transcription:

Network Security Consultant POSITION DESCRIPTION Unit/Branch, Directorate: Location: Regulatory Unit Information Assurance and Cyber Security Directorate Auckland Salary range: I $90,366 - $135,548 Purpose of position: This job exists to manage and develop relationships with telecommunications providers and with public and private organisations associated with the launch and operation of high altitude vehicles and their payloads. This job is also to support and contribute to technical assessments of network procurement, design and implementation proposals and national security risk assessments of high altitude launch vehicles and payloads. This role will also assist with the development of regulatory notices, policy, guidance and internal processes. Our mission at the GCSB is to protect and enhance New Zealand s security and wellbeing. Our values are Respect, Commitment, Integrity and Courage Information Assurance and Cyber Security Directorate purpose: The IAC Directorate contributes to the national security of New Zealand by providing technical advice and assistance to Government and organisations with significant national information infrastructures to enable them to protect their information from advanced technology-borne threats. To achieve this, the Directorate provides technical security inspections; high-grade encryption services; information assurance policy and advice; regulation of telecommunications & space activities; and high-end cyber security services to detect and respond to such threats.

Key accountabilities Provision of expert advice and knowledge Working with the telecommunications industry to manage expectations and supply formal correspondence Maintain knowledge of potential national security threat vectors through engagement with GCSB Intelligence Directorate and partner intelligence agencies, including equity concerns Manage the organisation of, and the distribution of information to, industry forums to support and enhance security awareness Maintain detailed knowledge of the telecommunications industry, including market pressures, technological developments, security initiatives and upcoming proposals Maintain knowledge of potential national security threat vectors associated with the launch or operation of high altitude vehicles or their payloads Engage with agencies and operators of outer space and high altitude vehicles to understand the nature of threats to national security Research information from both classified and unclassified sources to enhance network security awareness Identifies and supports partner activities in areas likely to be of technological significance to the GCSB Represents the GCSB at conferences, forums and working groups as required. Information assurance and compliance Deliverables/Outcomes National security concerns are identified, evaluated and communicated accurately and within agreed timeframes Decisions, communications and policy positions are escalated in accordance with procedures and within agreed timeframes GCSB and MBIE executive are appraised of potential national security concerns early in the procurement cycle Outer space and high altitude launches are not delayed due to delays caused by regulatory unit Partner agency intelligence equities are protected and compartmentalised General enquiries not related to specific proposals are responded to accurately, concisely and within agreed timeframes All network changes are notified in a timely manner, sufficiently early in the investment cycle to influence the decision making process Industry awareness of network security concerns are enhanced and implementation guidance is understood Rapid decisions made by network operators are anticipated and processed within agreed timeframes Information which adds value and enhances network security understanding is shared with industry Is recognised as a subject matter expert and confidently and competently speaks to any audience on modern telecommunications network security issues Demonstrates strategic foresight with respect to telecommunication technology Provide Information Assurance advice to support technical assessors Assist with identifying methods of detailing national security concerns and mitigation strategies Assists with the preparation and Network security concerns are heeded by network operators and decisions are adjusted where it is necessary to do so Practical Information Assurance advice is provided alongside expert technical advice to assist network operator decisions

implementation of regulatory notices, policy, guidance and processes Risk assessments GCSB does not unnecessarily impede the innovation or time to market in the telecommunications industry Policy and associated framework is fit for purpose and in accordance with legislation Receive, catalogue and maintain records of network proposals Provide regular reports and briefings to key internal and external stakeholders, including but not limited to national security risk assessments and internal reports Legal review of proposals occurs at the appropriate juncture and compliance processes are followed All network security proposals are accurately recorded and maintained appropriately Collaboratively work with stakeholders to provide robust and evidence based risk assessments Peer review assessments of national security risk assessments to ensure accuracy and assessments are conducted in accordance with legislation, regulations and procedures Assessment briefings are conducted and/or supported within agreed timeframes and meet stakeholder requirements Network Operator proposals are assessed promptly and within agreed timeframes, delays are communicated and expectations are set Relationship management Emphasis on ensuring that working relationships with key colleagues, partners and stakeholders are initiated, enhanced and maintained Effective relationships with external stakeholders are developed and maintained to support GCSB s purpose at an operational level The reputation of GCSB is positively viewed by key stakeholders Contribute to the execution of the IACD Operational Plan The manager is kept informed of relevant issues that have an impact on team and unit outputs Creating joint outputs with other units across GCSB and the NZ Intelligence Community Involving customers in the design and development of services Organisational stovepipes and obstacles to collective outputs are challenged and reduced or overcome Unit services reflect customer needs and requirements

Health and safety (for self) Work safely and take responsibility for keeping self and colleagues free from harm Report all incidents and hazards promptly Know what to do in the event of an emergency Cooperate in implementing return to work plans Be a visible role model at all times Follow GCSB s safety rules and procedures Other duties A safe and healthy workplace for all people using our sites as a place of work All requirements in the NZIC Health and Safety policy and procedures are met Contributes to business planning at section, unit and/or Directorate level Any other duties that fall within the scope of the position Fully participates and contributes to business planning, as required Position delegation Financial delegation: None Key stakeholders Internal: Information Assurance and Cyber Security Directorate staff IT Security staff External: Ministry of Business Innovation and Enterprise National Cyber Police Office Counterparts within the wider New Zealand Intelligence Community and central government agencies, including NZ Police Other partner intelligence agencies Telecommunications network operators, service providers and equipment manufacturers Second-party providers and equipment vendors

Person Specification Experience: A minimum of 10 years relevant experience in the New Zealand telecommunications sector. Experience in the security of modern telecommunications networks. Experience in relationship management through consultancy, vendor management or corporate sales. Experience managing stakeholder or client relationships, is desirable. Experience in regulatory processes, policy advice and compliance frameworks, is desirable. Knowledge and Skills: Proven capabilities in the design and implementation of telecommunications networks. A thorough understanding of contemporary telecommunications technology A thorough understanding of contemporary network security issues Strong interpersonal and communication skills, and the ability to relate effectively to both technical and non-technical people at all levels of an organisation Proven leadership qualities in a technical environment, and the ability to deal effectively and sensitively with other people Demonstrable ability to develop and present technical and regulatory presentations to external subject matter experts An eye to detail and a commitment to accuracy and quality in all work activities. Highly effective planning and organisational skills Highly developed oral and written communication skills, including the ability to communicate and build relationships at all levels; and to maintain a courteous, diplomatic and personable approach to customers and community partners The ability to participate in management forums as an effective member of the team, and contribute to the development of a high performance organisation

The ability to represent the GCSB professionally and with credibility within national and international communities Knowledge of the methods and techniques used by foreign states to utilise, telecommunications infrastructure to affect espionage, is desirable. Qualifications and Courses: Tertiary level qualification (Bachelor level) or equivalent experience, in Information Technology, Computer Science or equivalent, with an emphasis on information security. Tertiary papers in computer science and information security, is desirable. Current CISSP or CISM or other equivalent professional computing/networking qualification, is desirable. Specific Job Requirements: Ability to obtain and maintain a TSS security clearance NZIC Competencies In addition to the Person Specification above, competency standards which outline the development requirements of the position are set out under the NZ Intelligence Community (NZIC) Career Pathways framework. The Career Pathways framework enables progression within the job. Full descriptions of progression competencies and an overview of the NZIC Career Pathways framework is available on appointment.

Changes to Position Description Positions in the GCSB may change over time as the organisation develops. Therefore we are committed to maintaining a flexible organisation structure that best enables us to meet changing market and customer needs. Responsibilities for this position may change over time as the job evolves. This Position Description may be reviewed as part of planning for the annual performance cycle. Date PD reviewed: 6/06/2018 Signatures Managers Name Signature Date: Employee s Name Signature Date:

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback