Cyber Assessor, Sovereign Cloud

GoogleCanberra ACT, Australia

At Google, we have a vision of empowerment and equitable opportunity for all Aboriginal and Torres Strait Islander peoples and commit to building reconciliation through Google’s technology, platforms and people and we welcome Indigenous applicants. Please see our Reconciliation Action Plan for more information.

Minimum qualifications:

Bachelor's degree in Computer Science, Mathematics, a related technical field, or equivalent practical experience.
5 years of experience in customer-facing roles including interfacing with executive stakeholders and managing and delivering IT technical implementations or related initiatives.
Experience in supporting enterprise customers in cloud professional services organizations, IT consulting, or program management organizations.

Preferred qualifications:

Certification in IRAP qualifications or related Certified Auditor qualification such as SANS, ISO 27001, CRISC, etc.
Experience with DISP Security Officer, PSPF and Security Construction and Equipment Committee (SCEC) training, or endorsed SCEC consultant.
Excellent partner management, follow-through, resource management, attention to detail and communication skills.

About the job

As a Cloud Cyber Assessor for our sovereign cloud capability, you will be part of a team of cyber experts that will conduct cyber assurance activities for our private cloud services, data centers and underlying networks for critical customers in Australia. You will recommend cyber controls and evaluate systems according to the DSPF Principle 23 - Information and Communication Technology (ICT) Certification and Accreditation, the Information Security Manual (ISM), the Australian Cyber Security Centre (ACSC) guidelines, and the Protective Security Policy Framework (PSPF) and other contractual controls in key agreements. You will contribute to the identification of cloud related security and compliance design, development, deployment friction points and collaborate across teams to resolve them. You will help shape the Google Cloud security and compliance.Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google’s cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.

Responsibilities

Conduct cyber assessments aligned with Defence Security Principles Framework (DSPF), or Australian Cyber Security Centre (ACSC) and Information Security Manual (ISM) standards.
Support the development and execution of comprehensive security authorisation plans (SAP), producing key documentation such as Security Risk Management Plan (SRMP), System Security Plan (SSP) and Annex, Incident Response Plan (CRP), Continuous Monitoring Plan (CMP), and risk assessments to achieve system authorisation.
Engage directly with the government to build rapport and guide the customer on the assessment and authorization journey.
Maintain contemporary knowledge of frameworks such as DSPF and DISP, ISM, PSPF and the wider regulatory landscape, while also maintaining knowledge on emerging threats and security technology.
Perform the role of Defence Industry Security Program (DISP) Security Officer, supporting the maintenance of our DISP obligations.

Information collected and processed as part of your Google Careers profile, and any job applications you choose to submit is subject to Google's Applicant and Candidate Privacy Policy.

Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents-to-be, criminal histories consistent with legal requirements, or any other basis protected by law. See also Google's EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire.

If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form.

Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting.

To all recruitment agencies: Google does not accept agency resumes. Please do not forward resumes to our jobs alias, Google employees, or any other organization location. Google is not responsible for any fees related to unsolicited resumes.

job details

Jobs search results

Technical Lead, Minor and Child Protections

ML Compiler Software Engineer, TPU

Senior Product Manager, Engage SDK

Clinical Specialist, Health AI Evaluations and Safety

Cloud Customer Engineer, Platform

Research Scientist, System Qubit Calibration, Benchmarking, Modeling, Quantum

Senior Software Engineer, AI/ML GenAI, Google Workspace

Workspace Sales Specialist III, Enterprise, Google Cloud

Technical Program Manager II, Enterprise Networks, Google Cloud

ASIC RTL Design Engineer III, Silicon

Customer Engineer, Platform and AI, Google Cloud

Software Engineer Manager, GKE and AI Infrastructure

New Business Territory Manager, Google Cloud, SMB

Site Reliability Engineering, Software Engineer

Technical Program Manager, Edge Planning, Global Network Planning

Senior UX Designer, Local Ads

Software Engineer, Wallet

Senior Incident Response Strategist, Mandiant, Google Cloud

Field Sales Representative, Start-Ups

Open Marketing & Communications Career Opportunities, CapitalG Portfolio Companies

More about us

Related information

Equal opportunity