Information Security Officer

Description:

Bring legacy to life. For the future of Queensland and the world.

The Information Security Officer (AO6) role is critical for maintaining the department’s Information Security Management System (ISMS), ensuring compliance with Queensland Government policies and ISO 27001 standards. By safeguarding the department’s digital and information assets, conducting risk assessments, and promoting continuous improvement, this role supports the integrity and security of DPI's operations and services.

The Opportunity

About The Role

As our Information Security Officer, you will:

• Maintain and coordinate the ongoing operation of the department's Information Security Management System (ISMS).
• Undertake risk assessments, review internal controls and business processes to identify potential risks and risk mitigation plans.
• Evaluate, analyse, document and maintain relevant data, policies and procedures.
• Coordinate whole-of-government ISMS reporting for DPI's digital asset resources including application and information assets.
• Act as the Secretariat of the Information Security Working Group and undertake necessary actions to assist with completing the ISMS annual return, including but not limited to scheduling meetings, minute taking, reviewing, and updating action/risk registers, providing status updates and drafting documents and reports.
• Assist with the data collection and reporting of DPI's digital asset resources (ICT resources profiling).
• Act as a point of support for business areas completing governance reporting and information security classification assessments.
• Promote a culture of continuous improvement with the quality, collection and reporting of DPI's digital and information asset data and ISMS.
• Undertake other tasks as directed by the Chief Digital Officer.
  
  
  

You must also have

• Knowledge of Queensland Government Enterprise Architecture (QGEA) Information asset custodianship policy (IS44) and Information and cyber security policy (IS18)
• Knowledge of QGEA ICT profiling standard
• Knowledge of ISO 27001 Information Security Management Systems
• Demonstrated work experience in information security and/or cyber security
  
  
  

What We Are Looking For

We are seeking the best suited candidate for the role. We will achieve this by:

• assessing your eligibility and suitability to fulfill the role requirements (including, where relevant, the way you carried out previous roles)
• evaluating your potential contributions to the department and how your involvement would uphold our commitment to equity, diversity, respect, and inclusion.
  
  
  

Why work for us

Learn why our people choose DPI and more importantly why they stay.

• Work with passion and purpose
• Have a tangible impact, for today and tomorrow
• Enjoy interesting, diverse work
• Follow your path wherever it leads
• Get the flexibility and support you need to thrive
• Be part of our one, diverse DPI
  
  
  

Find purpose you feel, impact you see and a legacy you bring to life.

Applications to remain current for 12 months

Occupational group Information Management/Library