Your New RoleWorking on a Federal Government project, the Governance, Risk and Compliance position is focused on providing project support for the delivery of secure, compliant and accredited systems. Specifically, the role will support the delivery of a DevSecOps environment hosted on our partners cloud and on-premises infrastructure. Tasks include:Engagement with key stakeholders, including internal project management, Assessment Authority representatives, security service providers, other internal IT security personnel and business owners.Tailor and deliver security controls, artefacts, risk assessments, and security testing.Provide advice on corporate policies and procedures required to operate the system and draft these documents.Provide basic security configuration and monitoring for the project and educate administrators on their responsibilities to maintain security compliance.Provide advice on secure software development practices.Consideration of and alignment with project schedules such that the assessment and authorisation effort supports the business requirement to operate the subject system(s)Identification, validation and or advocacy for security requirements (functional or non-functional) and dependencies associated with system delivery, transition into service or ongoing sustainmentDevelopment of an Authorisation Plan detailing the elements above with the necessary activities, artefacts and stakeholder contributions required to complete the certification and accreditation process for assigned projectsOwnership for the execution of the Authorisation Plan with reporting as required by the business, project, Assessment Authority or other interested stakeholdersHandover all completed artefacts to operational groups for ongoing sustainment of the authorised system.