Senior OT Cyber Security Specialist

Fortescue has an exciting future ahead. As well as producing over 180 million tonnes of iron ore per year, we’re diversifying our business to become an integrated global green energy and resources company.

Senior OT Cyber Security Specialist

Work Location:

Fortescue’s East Perth office is located on the traditional lands of the Whadjuk Noongar people.

Roster:

Monday to Friday

The Cyber Security team is responsible for leading Fortescue's efforts to be a cyber resilient, safe, and trusted organisation, by effectively managing cyber risk across all assets enabled through technology (informational, industrial, and operational).

Reporting to the OT Cyber Security Superintendent, the role will be responsible for improving Fortescue’s Operational Technology (OT) security posture through: 

• Developing and implementing a comprehensive cyber security strategy for our OT systems.
• Collaborating with stakeholders to ensure OT cyber security policies are aligned with the organisation’s overall strategy.
• Serving as a subject matter expert on OT cyber security best practices and technologies and providing guidance to other teams within the organisation.
• Developing and maintaining key performance indicators (KPIs), and key risk indicators (KRIs), to measure the effectiveness of OT cyber security measures and provide regular reports to senior management.

Key responsibilities include:

• Lead the development and implementation of a comprehensive cyber security strategy for our OT systems to safeguard our industrial control systems (ICS), supervisory control and data acquisition (SCADA), and other operational technology systems.
• Participate in the design and review of new OT systems to ensure that cyber security risks are identified and mitigated.
• Conduct regular security assessments to identify potential threats and vulnerabilities to our OT systems.
• Respond to security incidents related to our OT systems.
• Conduct regular security awareness sessions for OT users.
• Keep up to date with the latest OT cyber security threats and trends and implement new security measures as required.

Qualifications and Experience:

• Bachelors’ degree or post-graduate degree in cyber security, computer science, engineering, or a related discipline.
• Minimum of 5 years’ experience in Cyber Security and/or Operational Technology.
• Professional certifications such as CISSP, CISM, GISCP, GSEC, GRID, etc.
• Knowledge and experience with the IEC-62443 and NIST standards. Experience with the AESCSF preferable.
• An ability to clearly communicate technical issues to diverse audiences at all levels.
• Excellent communication and collaboration skills, and the ability to work in a team environment.

Fortescue is deeply committed to providing a safe culture that builds respect, fosters inclusiveness, and values diversity. We celebrate individual strengths and team members from all backgrounds are encouraged to bring their whole selves to work. Our global workforce drives and promotes an inclusive culture, both within our organisation and throughout the communities we interact with across the world. Diverse backgrounds include First Nations Peoples, people with differing abilities, LGBTIQ+ community, gender, neurodiverse, cultural diversity, all age groups, and those with an intersectional or multiple diverse characteristics. We encourage candidates from all backgrounds to apply.

www.fmgl.com.au/jobs-at-fortescue

Fortescue reserves the right to close applications early should a suitable pool of candidates be identified

We only accept applications via our official website at https://ffi.com.au/careers/ or https://www.fmgl.com.au/jobs-at-fortescue/browse-jobs. Fortescue will never contact you to ask for payment of any kind, whether directly or through a third party.