Position Description. Engagement Manager UNCLASSIFIED. Outreach & Engagement Information Assurance and Cyber Security Directorate.

Similar documents
POSITION DESCRIPTION

Position Description. Computer Network Defence (CND) Analyst. GCSB mission and values. Our mission. Our values UNCLASSIFIED

POSITION DESCRIPTION

POSITION DESCRIPTION

POSITION DESCRIPTION

Security Director - VisionFund International

Strategic Security Analyst

Global Security Advisor

Defense Security Service. Strategic Plan Addendum, April Our Agency, Our Mission, Our Responsibility

The University of Queensland

Marine Institute Job Description

The Office of Infrastructure Protection

STRATEGIC PLAN. USF Emergency Management

THE TRUSTED NETWORK POWERING GLOBAL SUPPLY CHAINS AND THEIR COMMUNITIES APPROVED EDUCATION PROVIDER INFORMATION PACK

Texas Reliability Entity, Inc. Strategic Plan for 2017 TEXAS RE STRATEGIC PLAN FOR 2017 PAGE 1 OF 13

International Atomic Energy Agency Meeting the Challenge of the Safety- Security Interface

Todmorden High School Job Description

Competency Definition

Marine Institute Job Description

TRANSFORMING WEST MIDLANDS POLICE A BOLD NEW MODEL FOR POLICING

Information Security Controls Policy

UAE National Space Policy Agenda Item 11; LSC April By: Space Policy and Regulations Directory

BRING EXPERT TRAINING TO YOUR WORKPLACE.

GNSSN. Global Nuclear Safety and Security Network

Cybersecurity Presidential Policy Directive Frequently Asked Questions. kpmg.com

PRIOR LEARNING ASSESSMENT AND RECOGNITION (PLAR)

CHARTER OUR MISSION OUR OBJECTIVES OUR GUIDING PRINCIPLES

National Council for Special Education. NCSE Support Service Assistant National Coordinator Job Description and General Notes

National Council for Special Education. NCSE Support Service Advisor Job Description and General Notes

Position Description For ICT Officer Support Information, Technology and Communication Department Hobart

Leadership and Innovation to Every Building Greener THREE-YEAR STRATEGIC DIRECTION TO 2019

Information Security Controls Policy

College Of. Technological Innovation

Principles for a National Space Industry Policy

IT Information Security Manager Job Description

RESOLUTION 130 (REV. BUSAN, 2014)

IT SECURITY OFFICER. Department: Information Technology. Pay Range: Professional 18

Cloud solution consultant

13967/16 MK/mj 1 DG D 2B

Department of Justice Policing and Victim Services BUSINESS PLAN

EUROPEAN ICT PROFESSIONAL ROLE PROFILES VERSION 2 CWA 16458:2018 LOGFILE

UNCLASSIFIED. National and Cyber Security Branch. Presentation for Gridseccon. Quebec City, October 18-21

FIRE REDUCTION STRATEGY. Fire & Emergency Services Authority GOVERNMENT OF SAMOA April 2017

the steps that IS Services should take to ensure that this document is aligned with the SNH s KIMS and SNH s Change Requirement;

IT MANAGER PERMANENT SALARY SCALE: P07 (R ) Ref:AgriS042/2019 Information Technology Manager. Reporting to. Information Technology (IT)

Cloud solution consultant

New Zealand Government IBM Infrastructure as a Service

ehealth Ministerial Conference 2013 Dublin May 2013 Irish Presidency Declaration

National Cyber Security Strategy - Qatar. Michael Lewis, Deputy Director

IT Governance ISO/IEC 27001:2013 ISMS Implementation. Service description. Protect Comply Thrive

Qualification details

ISAO SO Product Outline

Information Technology Branch Organization of Cyber Security Technical Standard

SAINT PETERSBURG DECLARATION Building Confidence and Security in the Use of ICT to Promote Economic Growth and Prosperity

ROLE DESCRIPTION IT SPECIALIST

J.Enhancing energy security and improving access to energy services through development of public-private renewable energy partnerships

Solutions Technology, Inc. (STI) Corporate Capability Brief

EISAS Enhanced Roadmap 2012

ACTIVE SHOOTER RESPONSE CAPABILITY STATEMENT. Dynamiq - Active Shooter Response

Qualification details

Child Protection Manager - Pacific Timor-Leste (PTL)

Security and Privacy Governance Program Guidelines

Candidate Profile for the Position of Vice President, Education and Certification

Canada Green Building Council - Greater Toronto Chapter 3-Year Strategic Plan, BUILDING MOMENTUM 3-YEAR STRATEGIC PLAN ( )

PAGE - 16 PAGE - 1. Sometimes, the solution is just a benchmark away..

IS4H TOOLKIT. TOOL: ICT Assessment and Costing Consultancy Terms of Reference. Department of Evidence and Intelligence for Action in Health PAHO/WHO

Manager, Infrastructure Services. Position Number Community Division/Region Yellowknife Technology Service Centre


NSPCC JOB DESCRIPTION

PROFILE FRANCIS KAITANO. Francis Kaitano is a strategic, innovative, delivery focused Cyber Security professional.

Chartered Membership: Professional Standards Framework

CALIFORNIA CYBERSECURITY TASK FORCE

STRATEGIC PLAN VERSION 1.0 JANUARY 31, 2015

BUSINESS CONTINUITY MANAGEMENT PROGRAM OVERVIEW

New Zealand National Cyber Security Centre Incident Summary

GOVERNANCE, RISK MANAGEMENT AND COMPLIANCE TRENDS BY FCPAK ERIC KIMANI

Position Description IT Auditor

National Initiative for Cyber Education (NICE) and the Cybersecurity Workforce Framework: Attract and Retain the Best in InfoSec.

Data Security Standards

Qualification Specification

TEL2813/IS2820 Security Management

TURNING STRATEGIES INTO ACTION DISASTER MANAGEMENT BUREAU STRATEGIC PLAN

The Government IT Profession: Embedding IT Professionalism in Your Organisation

National Certificate in Meat Processing (Level 4) with strands in Supervisory Management, and Risk Management

Outreach and Partnerships for Promoting and Facilitating Private Sector Emergency Preparedness

IAF Strategic Plan to Identify and Achieve Expectations

Stakeholder feedback form

Critical Infrastructure Protection (CIP) as example of a multi-stakeholder approach.

Google Cloud & the General Data Protection Regulation (GDPR)

Digital Health Cyber Security Centre

Cyber Security Strategy

Implementation of INFCIRC 901: Promoting Certification, Quality Management and Sustainability of Nuclear Security Training

13.f Toronto Catholic District School Board's IT Strategic Review - Draft Executive Summary (Refer 8b)

PERSON SPECIFICATION. Cyber PROTECT Officer. Job Title: Status: Established

Critical Information Infrastructure Protection. Role of CIRTs and Cooperation at National Level

NATIONAL LAW UNIVERSITY, DELHI CENTRE FOR COMMUNICATION GOVERNANCE CALL FOR APPLICATIONS (CYBERSECURITY)

SAVANNAH LAKES VILLAGE PROPERTY OWNERS ASSOCIATION, INC. JOB DESCRIPTION

The Mission of the Abu Dhabi Smart Solutions and Services Authority. Leading ADSSSA. By Michael J. Keegan

STRATEGY ATIONAL. National Strategy. for Critical Infrastructure. Government

Presentation to the ITU on the Q-CERT Incident Management Team. Ian M Dowdeswell Incident Manager, Q-CERT

Transcription:

Position Description Engagement Manager Business unit: Position purpose: Direct reports: Directorate overview: Business Unit Overview Remuneration indicator: Outreach & Engagement Information Assurance and Cyber Security Directorate Manage relationships with New Zealand Government agencies and critical national infrastructure owners in order to deliver cyber security services, liaison and outreach assistance. Nil The IAC Directorate contributes to the national security of New Zealand by providing technical advice and assistance to Government and organisations with significant national information infrastructures to enable them to protect their information from advanced technology-borne threats. To achieve this, the directorate provides high assurance services, information assurance policy and advice, and highend cyber security services to detect and respond to such threats. The Outreach and Engagement unit is responsible for representational and external relationship building for the NCSC. Its team of Engagement Managers engage Government and significant national organisations to provide a touch point to the GCSB and NCSC in order to facilitate the delivery of information assurance, and the maintenance of information security policy and cyber security services. Pay Band H UNCLASSIFIED PAGE 1

GCSB vision and values Our vision Protecting and Enhancing New Zealand s Security and Wellbeing. Our values Respect, Commitment, Integrity, Courage. Information Assurance & Cyber security Directorate vision, mission and goal Our vision Protect New Zealand s vital information infrastructures Our mission To be a team of confident professionals, admired for our innovation and regarded both domestically and internationally as leaders in the Information Assurance and Cyber sectors. To have a comprehensive understanding of the advanced, technology-borne attempts to target our vital information infrastructures and steal our secrets and intellectual property. To be confident about our ability to monitor these threats and either reduce harm directly through timely provision of assurance and technical services or help others to mitigate risks through authoritative policy and expert advice built on our unique capabilities. Our goal Impenetrable infrastructure: by 2020 New Zealand s most important information infrastructures are impenetrable to technology-borne compromise. Role specification Functional Relationships External New Zealand Intelligence Community NZ Government departments and agencies NZ significant national organisations As necessary, other private or commercial organisations with cyber Internal Outreach and Engagement Management staff GCSB staff UNCLASSIFIED PAGE 2

security interests Key result areas The position of Engagement Manager encompasses the following major functions or key result areas: Cyber Security consultancy services and related Information Assurance (IA) Engagement with international and domestic partner agencies, the IT security community and industry Contribution to IACD vision, strategy and plan The requirements in the above key result areas are broadly identified below: Jobholder is accountable for: Cyber Security consultancy services and related Information Assurance (IA) Establishes, builds and maintains highly effective working relationships with internal and external stakeholders. Acts as the key communication conduit between external agencies and GCSB, ensuring information flows appropriately and all parties are actively engaged. Works collaboratively with managers and key staff across GCSB to provide advice to Government departments, agencies and significant national organisations through promoting national policy and the provision of expert IT security advice and assistance avoiding duplication of effort and expense. Maintains situation awareness of cyber security issues and threats and takes action to keep Government departments, agencies and significant national organisations informed as appropriate. Takes action to educate the security communities of interest to raise security awareness of cyber security and IA issues in Government or significant national organisations as required. Advocates for the establishment, Jobholder is successful when: Government departments, agencies and significant national organisations operators are provided with actionable and timely policy and advice. GCSB is seen as a credible source of information and positive security advice and Government departments, agencies and significant national organisations operators actively seek advice and support. GCSB is invited to provide cyber security education. Job holder has established close working relationships with others responsible for the development of the Protective Security Requirements Framework and ensures that cyber security advice to government agencies is joined-up, relevant and timely. UNCLASSIFIED PAGE 3

maintenance, promulgation and take-up of national policy and standards. Liaison with international and domestic partner agencies, IT security community and industry Maintain an awareness of partner policies and standards. Coordinating education events and forums such as the Security Information Exchange Forums. Maintaining a general awareness of the IT security posture of the industry players. Monitor business and external drivers that are likely to impact GCSB/NCSC business. Maintain and enhance awareness of technology trends likely to impact on GCSB/ NCSC business. Secure Information Exchanges provide an effective forum for relevant information exchanges, leading to collaboration to address emergent threats. Strong networks are developed and maintained to advance organisational aims. GCSB/NCSC has a clear understanding of the IT security concerns of industry and community, and knows where IT security risks lie. Successful identification of future technology, significant national organisations or business environment changes that impact on GCSB/NCSC business. Provision of expert opinion and proposal of solutions in response to identified GCSB/NCSC business gaps or problems. Contribute to the execution of the IACD Plan Promoting cross-team collaboration through the execution of the IACD Plan and support for exchanges between different IACD business units Participating in both functional (specific skill-sets) and cross-functional (mixed skill-sets) IACD teams at the request of the IACD Executive Team and Leadership Group. Contributing through participation in cross-functional IACD teams to the development, refinement and execution of the plan Customer feedback suggests that the plan is having a positive effect on IACD s performance through the creation of an improved operating model Confident about and responsible for proposing amendments to the plan and ensuring that they are enacted Note: The above performance standards are provided as a guide only and will need further discussion between the jobholder and manager as part of the performance development process. UNCLASSIFIED PAGE 4

Person specification Qualifications Essential: Tertiary level qualification (Bachelor level) or equivalent. Desirable Tertiary papers in computer science, information security or information assurance. Professional computing/networking qualification, e.g. in computer networking, or systems administration. Professional information security certification. Knowledge/experience Essential: Certified information security professional or experience with information security as part of an ICT role Expert knowledge and 6 or more years in IT security and/or ICT policy, particularly computer security, network security and computer network defence. Sound working knowledge of frameworks, processes and methodologies that contribute to excellent client engagement Highly developed communication skills. Strong relationship management skills. Desirable: Experience as a security consultant. Experience using web based tools for customer engagement. Corporate risk management experience Experience with network assessment Experience with network administration. Experience as a customer relationship manager. Programme or project management experience Core competencies All employees are measured against the following core competencies as part of performance development Security Teamwork and Leadership Results Focus Communication and Knowledge Sharing Professionalism Innovation Customer Focus UNCLASSIFIED PAGE 5

Personal attributes Enthusiasm, self-motivation and innovation. Proven leadership qualities and the ability to deal effectively and sensitively with other people. Highly effective planning and organisational skills. Highly developed oral and written communication skills, including the ability to communicate and build relationships at all levels; and to maintain a courteous, diplomatic and personable approach to customers and community partners. The ability to participate as an effective member of the team, and contribute to the development of a high performance organisation. The ability to represent the GCSB with credit within national and international communities. Change to position description Positions in GCSB may change over time as the organisation develops. Therefore, we are committed to maintaining a flexible organisation structure, which best enables us to meet changing market and customer needs. Responsibilities for this position may change over time as the job evolves. Such change may be initiated as necessary by the manager of this position. This Position Description may be reviewed as part of the preparation for performance planning for the annual performance cycle. Health & Safety GCSB is committed to providing a healthy and safe work environment and safe management practices for all employees. Employees are expected to share this commitment as outlined in current Health and Safety legislation by taking all practicable steps to ensure:- a. The employee s safety while at work, and b. That no action or inaction of the employee while at work causes harm to any other person. Knowledge Management Employees are responsible for ensuring that all business records created are accessible and stored in the correct manner according to GCSB record keeping policy, standards and procedures UNCLASSIFIED PAGE 6

Employee: Date: Manager: Date: UNCLASSIFIED PAGE 7

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback