Cyber Worthiness Engineer

Join Empirical Solutions - Strengthening Cyber Resilience Through Engineering Excellence

Empirical Solutions is seeking an experienced Cyber Worthiness Engineer to support the development, assurance, and governance of secure ICT systems in alignment with Australian Government security frameworks and standards.

This role is ideal for a security professional or systems engineer with a strong understanding of cyber worthiness, ICT accreditation, and documentation management who thrives in highly regulated, mission-critical environments.

What You'll Be Doing

As a Cyber Worthiness Engineer, you will:

Ensure compliance with current cyber worthiness frameworks, standards, and policies, including ISO 27001, the Defence Security Principles Framework (DSPF), Protective Security Policy Framework (PSPF), and the Australian Government Information Security Manual (ISM)

Develop, maintain, and review key cyber worthiness documentation including:

System Security Plan (SSP)

Statement of Applicability (SoA)

System Overview Document (SOD)

Security Risk Management Plan (SRMP)

Incident Response Plan

Continuous Monitoring Plan

Prepare and maintain additional deliverables such as:

System risk scores and threat assessments

Business Continuity and Disaster Recovery Plans

Standard Operating Procedures and technical design documentation

Security frameworks and architecture artefacts

Provide ongoing technical advice and cyber worthiness support to project teams throughout the system lifecycle

Contribute to risk management, threat modelling, and control implementation activities

Ensure cyber deliverables meet project objectives, accreditation requirements, and governance timelines

What We're Looking For

We welcome applications from professionals who bring:

Proven experience in cybersecurity engineering, ICT assurance, or system accreditation within Defence, government, or other regulated environments

Strong understanding of Australian Government security frameworks (ISM, PSPF, DSPF, ISO 27001)

Demonstrated experience preparing formal ICT security documentation and compliance artefacts

Excellent attention to detail, organisation, and technical writing skills

Ability to work collaboratively across engineering, governance, and risk teams

Current or eligible security clearance (NV1 or above)

Desirable Qualifications & Experience

You'll be highly regarded if you also bring:

Tertiary qualifications in Cybersecurity, Information Technology, or Systems Engineering

Certifications such as CISSP, CISM, ISO 27001 Lead Implementer/Auditor, or equivalent

Experience with risk and compliance tools or governance frameworks

Familiarity with secure design, DevSecOps, or cloud security environments

Why Empirical Solutions?

Empirical Solutions is a veteran-owned Australian company delivering engineering, project management, and consulting excellence to strengthen national capability. We operate at the intersection of technical precision, strategic vision, and service-minded delivery.

We offer our team:

Flexible/hybrid working options (where operationally suitable)

Paid parental and partner leave

Defence reservist support

Professional membership reimbursement

Structured training, mentoring, and career development pathways

If you're a cyber professional dedicated to delivering secure, compliant, and resilient technology solutions - apply today to join Empirical Solutions.

)