Cybersecurity Control Engineer
BHP
About BHP
At BHP we support our people to grow, learn, develop their skills and reach their potential. With a global portfolio of operations, we offer a diverse and inclusive environment with extraordinary career opportunities. Our strategy is to focus on creating a safe work environment where our employees feel strongly connected to our values and objectives, and where the capability of our people is key to our success.
Come and be a part of this success.
About the Role
Responsible for identifying cybersecurity threats and scenarios such as ransomware events and to determine there are adequate controls. Also support the regional level cyber risk and control activities including adherence to cyber standards.
Responsible for managing the execution and completion of the key activities below:
- Participate in cybersecurity material risk assessments and evaluations to understand the key threats and scenario that will require mitigations and controls.
- Collaborate with risk and controls owners to develop program of work to prioritize the scope and area that will need to be tested during the financial year.
- Support project and BAU operations team to identify relevant controls or activities required to manage any cyber risks.
- Work with relevant Cyber Subject Matter Experts to address any issues, gaps or incidents.
- Undertake technical security assessment to determine if any proposed control or solution will have meet all the key Cybe requirements.
- Prepare reports and provide briefing to relevant stakeholders and the Technology Leadership Teams to identify lessons learnt and actions for improvement.
- Provide insights to regional leadership teams and stakeholders on the posture of cyber risk within the region.
About You
- Strong relevant experience in the industry (Mining, Resources, Banking or Telco), domain areas (Enterprise and Operational Risk Management, Cybersecurity, Service Management, Auditing and Advisory/Consulting).
- Knowledge and experience using Governance, Risk and Compliance Tools such as 1SAPGRC, Oracle GRC, RSA Archer etc.
- Knowledge and experience of Technology processes, systems and tools.
- Have led teams in conducting simulation exercises and tests.
- A Technical Degree is mandatory in Computer Science, Technology, Engineering, or Management Information Systems
- CISSP, CISA or CRISC certification
- Excellent communication skills
- Language English expert level and optional Spanish
About Our Process
At BHP, we are committed to employing individuals who align with the BHP Charter Values and meet the requirements of the role. As part of the recruitment process, there are a number of checks which may be conducted to demonstrate applicants suitability for a role including police / criminal background checks, medical, drug and alcohol testing, due diligence checks, right to work checks, and/or reference checks.
To ensure the safety and wellbeing of our people, BHP requires employees in Australia to be fully vaccinated against Covid-19 in line with BHP’s Covid Policy and any relevant State health directives. If you are applying for a role at BHP please consider this requirement when submitting your application. BHP will also adhere to any relevant health directives that may be made that affects our workforce.
Supporting a Diverse Workforce
The size and magnitude of our business not only provides significant opportunity for professional development, but also attractive salary packages with performance-based bonuses and a unique BHP employee share program.
At BHP, we recognise that we are strengthened by diversity. We are committed to providing a work environment in which everyone is included, treated fairly and with respect. We are an Equal Opportunity employer and we encourage applications from women and Indigenous people. We know there are many aspects of our employees' lives that are important, and work is only one of these, so we offer benefits to enable your work to fit with your life. These benefits include flexible working options, a generous paid parental leave policy, other extended leave entitlements and parent rooms.