Senior Cyber Security GRC Specialist

KBR • Full-time • Canberra, Australian Capital Territory, Australia • 1w ago

Title:

Your KBR future – delivering solutions and changing the world

About KBR:

We are a company of innovators, thinkers, creators, explorers, volunteers and dreamers who all share one goal — to improve the world.

KBR delivers science, technology and engineering solutions to governments and companies around the world. KBR employs approximately 34,000 people performing diverse, complex, and mission-critical roles in 33 countries.

For 65 years, KBR and its heritage companies are proud to have delivered some of Australia’s largest and most complex projects.

With around 2,000 employees in 6 primary offices throughout Australia, we are committed to social and environmental sustainability and delivering projects with a digital mindset driving innovation within our business and for our customers.

We help ensure mission success on land, in the air, at sea, in space and cyberspace for our defence customers. From individual technologies and services to comprehensive project delivery and mission execution, no other company can match the breadth and depth of KBR.

KBR comprises a diverse team who provide a broad spectrum of capabilities across Australia and the Asia Pacific. Our proven project teams readily address complex and multi-disciplinary activities, providing low-risk and cost-effective solutions to the defence force.

The Opportunity:

The Cyber Security (Governance, Risk & Compliance) GRC Specialist will provide expert technical guidance and support to the MPS Project Manager and the Mission IT and Security Solutions Line of Business within KBR. In collaboration with the Project Manager, this role will contribute to the successful delivery of multiple projects, primarily for Defence, ensuring that all initiatives comply with established policies, procedures, and security frameworks.

The Specialist will play a key role in ensuring the delivery of secure, compliant, and accredited systems that meet both regulatory and operational requirements.

The key responsibilities of the role will include, but is not limited to:

Engage with key stakeholders, including project management, Certification Authorities, security service providers, IT security personnel, and business owners, to define security responsibilities and deliverables, including risk assessments, security controls, and recommendations for risk treatment.
Align security assessment and authorisation efforts with project schedules to meet business requirements for system operation.
Identify, validate, and advocate for security requirements (functional and non-functional) and dependencies related to system delivery, transition, or ongoing support.
Develop and execute a Security Authorisation Plan, including required documentation (e.g., SSP, SRMP, IRP, CMP, BIL Assessment), to complete the certification and accreditation process for assigned projects.
Take ownership of assigned projects, ensuring accountability for performance and outcomes, while managing technical risks and issues.
Review and improve project documentation, meet deliverables, and contribute to a positive, dynamic work environment.

As the ideal candidate you will bring:

Essential:

Minimum of 3-5 years’ experience in IT Security roles with at least two years’ experience providing GRC services in Australian Federal Government, preferably within the Defence framework.
GRC related certification with security-related certificates preferred.
Strong client and staff engagement, relationship and communications skills
The ability to prioritise the importance of security and compliance matters in the context of the subject platform or system is required. This may include the support of Security Engineers, Security Testers or other external stakeholders, however it is the responsibility of GRC personnel to communicate the priority of security elements through the certification and accreditation process.
Current or eligible to obtain a Defence security clearance – NV1 or higher
Highly articulate with excellent attention to detail.
Well-developed interpersonal skills.

Desirable:

IRAP certification
CASG/Defence/Defence Industry experience
Project Scheduling experience
Advanced Office Computing Application knowledge in Win10, Excel and Word.

Benefits of KBR

A workplace culture certified as a Great Place To Work (Aus, India, UK & US)
Flexible working conditions
Competitive salary (including annual reviews)
Paid Parental leave
Paid Reservist leave
Income protection
Corporate rewards
Salary packaging/Novated leasing
Discounted employee stock purchase plans
Flu shots, skin checks and private health insurance discounts
Career development: Online learning, mentorship and career pathways

If you’re ready to shape tomorrow, let’s get started. Apply Now!

KBR acknowledges the Traditional Custodians of Country throughout Australia and their continuing connections to land, sea, community and culture. We pay our respects to Elders past and present.

KBR is an equal opportunity employer committed to providing an inclusive and diverse work environment. We encourage candidates of all abilities to apply.

As a Major Service Provider of the Australian Defence Force, an AGSVA security clearance will be required and compliance to International Traffic in Arms Regulations (ITAR). As such, our hiring decisions are based on the key requirements of each role and candidates are selected based on their unique strengths and experiences.

#LI-JAW1