Cyber Security Advisor

Fortescue has an exciting future ahead. As well as producing over 180 million tonnes of iron ore per year, we’re diversifying our business to become an integrated global green energy and resources company.

Cyber Security Advisor

Work Location: Fortescue Centre - Fortescue’s Perth office is located on the traditional lands of the Whadjuk people.

Role overview:

Fortescue is seeking a Cyber Security Advisor to be part of a high performing and customer focussed team that provides cyber security services across the business. These services will include risk assessments, vendor due diligence, threat analysis, and more. You will advise teammates on cyber best practices in alignment with Fortescue’s Cyber Security Framework (FSCF).

You will also work alongside the Cyber Education and Awareness Team to enhance the cyber security culture of the organisation.

Key responsibilities include: 

• Provide advice to team mates on the Fortescue Cyber Security Framework (FCSF) to deliver secure solutions and drive a cyber safe culture.
• Advise on the implementation of security controls and selection of appropriate risk mitigations.
• Conduct, or coordinate with our partners, cyber risk assessments, including security architecture reviews, penetration testing and threat modelling.
• Manage cyber risks and remediation plans. Maintain and improve the cyber risk management system, including libraries and the cyber risk register.
• Undertake research and analysis and prepare briefs (“one-pagers”) that drive informed decision making.
• Evaluate of emerging technologies, service providers, tools, platforms, and applications that are fit for purpose and secure for Fortescue.

Qualification and Experience:

• Communication skills to drive cultural change and influence team mates to be cyber safe
• Facilitation skills in forums such as working groups, committee meetings and stakeholder consultations to ensure a diversity of voices are listened to and teammates are actively engaged and enjoy their interactions with you
• Ability to map customer centric processes with a focus on simplicity for the end users is desirable
• A strong understanding of relevant risk and cyber frameworks such as ISO, NIST, ISM, COBIT, AEMO etc.
• Qualifications, certifications, or experience relevant to Cyber Security
• Experience working in a Cyber Security Advisor or Cyber Architecture role is highly desirable
• Understanding of operational technology environments is desirable

Our team members are encouraged to bring their whole selves to work. Candidates from all backgrounds and ages are encouraged to apply, including First Nations People, women, those who identify as LGBTIQ+, people with differing abilities and those with neurodiverse, intersectional, or multiple diverse characteristics.

www.fmgl.com.au/jobs-at-fortescue

Fortescue reserves the right to close applications early should a suitable pool of candidates be identified