Cyber Engineer

Work Location: Fortescue’s Perth office is located on the traditional lands of the Whadjuk Noongar people.

Roster: Monday to Friday 

 
The Cyber Engineer - Security Operations plays a critical role in protecting the organisation from evolving cyber threats through the design, implementation, optimisation and operation of security controls. Reporting to the Superintendent of Cyber Security Operations, this role will be responsible for leading the operation, optimisation and continuous improvement of the organisation's email security capabilities, while supporting security monitoring, threat detection, incident response and broader Security Operations functions across the enterprise. 

 
Working across Cyber Security, Infrastructure and Workplace Technology teams, you will contribute to the ongoing maturity of Fortescue’s security posture through the implementation of industry-leading email security controls, threat detection capabilities and human risk reduction initiatives. This is an opportunity to work in a fast-paced and evolving environment, helping to safeguard critical business operations while supporting Fortescue’s technology and decarbonisation ambitions.

• Support the operation, optimisation and continuous improvement of enterprise security controls, with a primary focus on email security technologies and processes.
• Configure, maintain and enhance controls designed to protect against phishing, business email compromise, spoofing, malware and other email-borne threats.
• Drive the implementation and management of email authentication and domain protection technologies, including SPF, DKIM and DMARC.
• Contribute to initiatives that improve security awareness, reduce human cyber risk through the analysis of email threat trends, user behaviours and security control effectiveness.
• Monitor, investigate and respond to security alerts, events and incidents across enterprise environments, including participation in cyber incident response activities such as triage, containment, eradication, recovery and post-incident review.
• Conduct threat analysis and investigations to identify malicious activity, emerging threats and opportunities for security improvement.
• Develop and maintain security use cases, detection logic, operational procedures and technical documentation.
• Collaborate with Technology, Infrastructure, Digital Workplace and business stakeholders to implement and improve security controls.
• Support security monitoring, threat detection and response capabilities across cloud, endpoint, network and identity domains & contribute to security engineering initiatives, control uplift programs and the ongoing development of Security Operations roadmaps.
• Assist with security assessments, control reviews and continuous improvement activities to strengthen organisational cyber resilience.
• Identify opportunities and implement operational efficiency through the adoption of artificial intelligence capabilities, automation, orchestration and integration activities. 

• Degree / Diploma / Certificate in Information Technology, Computer Science, Cyber Security, Engineering or a related discipline.
• Demonstrated experience in Security Operations, Security Engineering, Incident Response, Systems Administration, Infrastructure Engineering, or a related role with responsibility for implementing and supporting security controls. Strong understanding of email security principles, including email authentication standards, threat protection controls and email security operations.
• Experience investigating phishing, business email compromise and other cyber security threats.
• Knowledge of security monitoring, threat detection, alert triage and incident response processes.
• Experience working with security technologies across one or more domains, including email security, SIEM, endpoint, identity, cloud or network security.
• Experience developing or maintaining security controls, detection content, operational procedures and technical documentation.
• Familiarity with automation, orchestration, artificial intelligence capabilities and API-driven integrations to improve security operations outcomes.
• Understanding of cyber security frameworks, industry best practices and modern security architectures.
• Strong analytical, problem-solving and communication skills, with the ability to work effectively both independently and as part of a multidisciplinary team.