Cyber Incident Response Specialist

Fortescue is both a proud West Australian company and a global green solutions business. We are recognised for our culture, innovation and industry-leading development of infrastructure, mining assets and green energy initiatives.

Cyber Incident Response Specialist

Work Location:

Fortescue’s East Perth office is located on the traditional lands of the Whadjuk Noongar people.

Roster:

Monday to Friday

We are seeking a highly skilled and motivated Cyber Security Incident Response Specialist to join our dynamic and fast-paced cyber security team. As a Cyber Security Incident Response Specialist, you will play a crucial role in safeguarding Fortescue's digital assets and infrastructure from cyber threats and ensuring a swift and effective response to security incidents. Your primary responsibility will be to analyse, detect, mitigate, and respond to cyber security incidents, including breaches, intrusions, malware attacks, and other cyber threats.

Key responsibilities include:

1. Incident Response and Mitigation:
• Lead and coordinate incident response efforts to contain, mitigate, and eradicate cyber security incidents.
• Implement predefined incident response procedures and develop new response strategies as required.
• Work closely with IT teams to isolate affected systems and prevent further propagation of threats.
• Conduct forensic investigations to identify the root cause of incidents and gather evidence for potential legal actions.
2. Incident Detection and Analysis:
• Monitor security alerts and logs from various security tools and systems to identify potential security incidents.
• Conduct in-depth analysis of security events and incidents to determine the scope, impact, and severity.
• Collaborate with the security operations team to fine-tune detection rules and improve incident analysis.
3. Threat Hunting and Intelligence:
• Proactively hunt for signs of advanced threats, potential vulnerabilities, or suspicious activities in the network.
• Stay updated with the latest cyber threats and attack vectors to enhance Fortescue's security posture.
• Utilise threat intelligence sources and tools to identify emerging threats and implement necessary countermeasures.
4. Incident Reporting and Documentation:
• Prepare comprehensive incident reports detailing the timeline, impact, and response actions taken.
• Maintain detailed documentation of incident response activities, including evidence collected and remediation steps.
5. Post-Incident Analysis and Improvements:
• Conduct post-incident reviews to identify areas for improvement and implement necessary enhancements to prevent future incidents.
• Collaborate with the security team to enhance incident response playbooks and standard operating procedures.

Qualifications and Experience:

• Proven experience in cyber security incident response, threat hunting, and digital forensics.
• Strong knowledge of cyber security principles, protocols, and technologies.
• Familiarity with various security tools such as SIEM,  EDR, forensic analysis tools, memory analysis tools, threat intelligence feeds and SOAR platforms.
• Hands-on experience with incident response frameworks (e.g., NIST CSF, MITRE ATT&CK).
• Excellent problem-solving skills and the ability to work under pressure during critical incidents.
• Strong communication and collaboration skills to effectively work with cross-functional teams.
• Relevant certifications like GCIH, CISSP  or equivalent will be an advantage.

Fortescue is deeply committed to providing a safe culture that builds respect, fosters inclusiveness, and values diversity. We celebrate individual strengths and team members from all backgrounds are encouraged to bring their whole selves to work. Our global workforce drives and promotes an inclusive culture, both within our organisation and throughout the communities we interact with across the world. Diverse backgrounds include First Nations Peoples, people with differing abilities, LGBTIQ+ community, gender, neurodiverse, cultural diversity, all age groups, and those with an intersectional or multiple diverse characteristics. We encourage candidates from all backgrounds to apply.

www.fmgl.com.au/jobs-at-fortescue

Fortescue reserves the right to close applications early should a suitable pool of candidates be identified

We only accept applications via our official website at https://ffi.com.au/careers/ or https://www.fmgl.com.au/jobs-at-fortescue/browse-jobs. Fortescue will never contact you to ask for payment of any kind, whether directly or through a third party.