Locations: Canberra, Melbourne, Adelaide, Sydney, or Brisbane
Security Clearance: AGSVA NV1 minimum (Negative Vetting Level 1)
Work Environment: No personal electronic devices permitted on site

About the Role

Willyama Services is seeking skilled and security-cleared Cyber Security Assessors and Assessor & Auditors to support cyber assessments, audit activities, and maturity uplift initiatives across secure Defence-related environments.

In this role, you’ll work closely with Defence and government organisations to help them meet their cyber security obligations, strengthen control frameworks, and maintain a strong security posture. You will contribute to improving governance, assurance, and compliance outcomes in some of Australia's most sensitive environments.

Work Locations & On-Site Requirements

Canberra-based roles: Require on-site attendance 5 days per week at a secure, Defence-approved facility.

Melbourne, Adelaide, Sydney, or Brisbane: Require on-site attendance 3 days per week, with flexible remote work for the remaining 2 days.

Key Responsibilities (All Levels)

Conduct cyber security assessments and/or audits of systems, policies, and controls

Review and analyse security documentation, identify vulnerabilities, and recommend remediation

Prepare audit findings and technical reports for internal and external stakeholders

Support cyber security maturity uplift projects and compliance initiatives

Engage with stakeholders to improve governance and assurance practices

Role Levels

Cyber Security Assessor

An intermediate-level position suited to professionals with solid audit or assessment experience looking to grow in secure or regulated environments.

Key Duties:

Conduct technical and policy-based risk assessments across ICT environments

Identify security gaps, assess maturity levels, and prepare reports

Provide cyber advisory services and support remediation projects

You Bring:

Experience with cyber assessments or audits in government or critical infrastructure

Familiarity with ACSC Essential Eight, ISO27001, NIST 800-171

Strong stakeholder engagement and technical writing skills

Senior Cyber Security Assessor / Auditor

A senior-level role suited for professionals with leadership experience delivering large-scale audits and managing complex cyber security assessments.

Key Duties:

Lead cyber audits across multiple domains and business units

Provide strategic security advice to technical and non-technical audiences

Develop audit frameworks and drive continuous improvement

Present findings to executive stakeholders and lead risk mitigation initiatives

You Bring:

Extensive experience with cyber security assessments in secure or regulated environments

Deep knowledge of risk, assurance, and governance frameworks

Leadership capabilities in audit planning and team coordination

Industry certifications such as CISSP, CISM, or equivalent highly desirable

Mandatory Requirements

Australian Citizenship

Current NV1 security clearance

Ability to attend on-site at a secure Defence facility as required (3 or 5 days/week based on location)

Willingness to work in a no-device secure environment

Relevant tertiary qualifications or equivalent industry experience

Highly Desirable

Experience in Defence, government, or high-assurance sectors

Familiarity with frameworks such as ACSC Essential Eight, NIST 800-171, ISO27001

Experience with tools such as SIEM, firewalls, IDS/IPS, endpoint security, vulnerability management

Industry certifications including CISSP, CISM, CEH, Security+, or equivalent

Why Join Willyama Services?

Competitive salary and employee benefits

Work with a leading Indigenous-owned cyber security consultancy

Career development and training opportunities in secure government sectors

Be part of initiatives that support Australia’s national security

Thrive in a supportive, values-driven culture: Opportunity, Trust, Courage, Lead

Apply Now

Whether you're an emerging cyber assessor or an experienced audit lead, we want to hear from you.

Apply today and help strengthen Australia’s most critical systems.