Back to jobsLead end-to-end delivery of Essential Eight maturity assessments in-line with ASD guidance across Unclassified, Official, Protected and higher environments.
Conduct document-based control reviews including policies, standards, procedures, architectural designs and operating models.
Plan and execute onsite assessments including evidence collection, interviews, observation and validation of implemented controls.
Assess technical control effectiveness across application whitelisting, patching, macro security, privilege management, MFA, backups and configuration hardening.
Critically evaluate the design and operating effectiveness of controls against Essential Eight maturity requirements.
Document assessment outcomes with clear maturity ratings, risk articulation and defensible audit trails.
Develop clear findings, evidence summaries and prioritised remediation recommendations for technical and executive audiences.
Provide quality assurance over junior assessor outputs and contribute to consistent assessment methodologies.
Support client uplift programs through reassessment, targeted advisory and validation reviews.
Engage confidently with system owners, infrastructure teams and security leadership to validate control implementation.
Engage confidently with industry executive leaders, communicating clearly on assessment scope, approach and findings.
Maintain strong alignment to ASD guidance, ISM, PSPF and DISP requirements as applicable.
