Specialist Cybersecurity - IAM | Gurgaon

About BHP

At BHP, we are the world’s largest mining company, with over 140 years of history. With that legacy comes the ability to tackle some of the world’s biggest challenges. These aren’t just mining challenges, they are cutting-edge technological challenges that are transforming BHP into one of the most advanced technology organizations globally.​

To make this vision a reality, we need people like you - innovators, problem-solvers, and technologists ready to create solutions that will shape the future.​

Why Join Us?

At BHP, people are at our core. We value individual ideas, diverse thought processes, and the unique perspectives that drive innovation. When you join us, you’re not just part of a team - you’re part of a culture that empowers you to make an impact.​

• Innovation & Impact: Work on AI, data, digital platforms, automation, and cybersecurity projects that drive sustainability and global transformation.​
• Stability & Purpose: Be part of a company with 140+ years of history and a strong commitment to environmental and social governance.​
• Career Growth & Learning: Accelerate your career with structured learning, global mobility, and exposure to diverse teams.​
• Inclusive Culture & Flexibility: Enjoy hybrid work options and a culture that values diversity and empowerment.​
• Competitive Rewards: Transparent pay structures and equity plans that match your ambition.​

What We're Looking For

We’re searching for technologists at the forefront of their game - people who don’t just follow trends but create them. Innovators who thrive on solving complex problems and generating solutions that push boundaries. If you’re passionate about technology and energized by the opportunity to shape the future, you belong here.

• Bachelor’s in IT/Cybersecurity/Computer Science or any related discipline
• Demonstrated experience with enterprise IAM and PAS platforms such as Microsoft Entra (Azure AD), Active Directory
• Authentication and Federation Protocols: Strong knowledge of SAML 2.0, OIDC, OAuth 2.0, SCIM, LDAP, Kerberos, and certificate-based authentication.
• Security Frameworks: Familiarity with NIST CSF, ISO/IEC 27001, MITRE ATT&CK (for credential access), Zero Trust Architecture (NIST 800-207).
• Proven experience in securing and governing non -human identities, including cloud identities and/or AI agents. Cloud IAM: Knowledge of cloud-native IAM constructs in AWS (IAM, STS, IAM Roles), Azure (RBAC, Conditional Access), and GCP (IAM Policies).
• Proven experience in designing, defining, and implementing identity personas.
• Certifications: CISSP, CCSP, GIAC GSLC/GIAM, Microsoft Identity and Access Administrator (SC-300), or equivalent IAM-focused certifications. 

About the Role

Technology is a global function within BHP that builds and maintains Reliable, Impactful, Safe and Efficient technology. Cybersecurity is a key part of this team that manages BHP’s internal and external attack surface, safeguarding our people, data, and business operations against evolving threats.

Specialist Cybersecurity – Identity and Access Management is a key technical role that assists with defining, engineering, and governing the enterprise IAM strategy, platforms, and architecture across BHP’s environments. This role acts as the support for identity and access, ensuring the implementation of Zero Trust principles, policy-driven access control, and secure identity lifecycle management. The role supports IAM is embedded by design in platforms, services, and transformation initiatives, balancing security, usability, and compliance.

In this role, your key accountabilities will include:

• Support the definition and maintenance the Cyber security IAM domain strategy, blueprints, and target state architectures across cloud, on-prem, SaaS, OT, and privileged environments.
• Assist with the design, operation, and continuous improvement of IAM platforms. Ensure alignment with business, security, and regulatory requirements.
• Assist with the implementation of Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and policy enforcement across key systems. Ensure appropriate access, segregation of duties, and least privilege across the organisation.
• Support joiner/mover/leaver (JML) processes and integrations with HR systems and ITSM platforms. Automate provisioning and de-provisioning to reduce risk and improve efficiency.
• Support privileged access strategies and tooling (e.g. CyberArk), including vaulting, session management, approvals, and break-glass workflows. Align PAS controls with compliance and audit needs.
• Assist with identity federation, single sign-on (SSO), and multi-factor authentication (MFA) integrations for internal and external user populations. Lead cloud identity integrations using SAML, OIDC, SCIM, and OAuth 2.0.
• Ensure identity-related controls align with NIST CSF, ISO 27001, CPS 234, GDPR, and internal audit standards. Support evidence gathering and remediation activities for internal/external audits.
• Partner with cloud and application teams to embed identity-aware security controls into infrastructure-as-code (IaC) pipelines, APIs, and CI/CD platforms. Champion IAM enablement of DevOps and developer access flows.
• Support threat detection and incident response related to identity abuse, credential theft, MFA fatigue, insider threats, and misconfigured roles. Integrate IAM telemetry with SIEM and SOAR platforms.
• Collaborate with platform owners, HR, IT, risk, and business leaders to align IAM controls with business needs while ensuring strong security posture.
• Drive continuous improvement in security posture aligned with frameworks like NIST CSF, ISO 27001, or equivalent.
• Identifies, implements and evaluates the success of continuous improvement activities/initiatives to improve safety, productivity, cost and revenue outcomes for the business;
• Conducts presentations and facilitates workshops using storytelling to connect influence and engage the audience, and couches other leaders and direct reports on the same;
• Applies an understanding of the business context, BOS and the BHP operating model and ways of working to enhance decision-making, productivity and value chain performance;
• Engages the capabilities of the entire organisation; standardises best practice to drive the function to achieve 100% safety, 100% customer value and 0% waste;
• Knows our customers and is obsessed with meeting their needs.

What You'll Love

• Clear career pathways and fast upskilling​
• Exposure to global teams and cutting-edge tech​
• A safe, supportive culture (98% of our employees feel respected)​
• Flexibility and trust (92% rate work-life balance highly)​
• Empowerment to innovate (90% feel encouraged to improve how we work)

Ready to make an impact that matters?
Apply now and be part of a team where your ideas shape the future.