Loading...
Apply now »

Specialist Cybersecurity

Date:  21-Feb-2021
Job Posting End Date:  28-Feb-2021;10:59:59GMT
Job Country: 

Singapore

Job State/Province:  Singapore
Job Location/Region:  Marina Bay

About BHP

At BHP we support our people to grow, learn, develop their skills and reach their potential. With a global portfolio of operations, we offer a diverse and inclusive environment with extraordinary career opportunities. Our strategy is to focus on creating a safe work environment where our employees feel strongly connected to our values and objectives, and where the capability of our people is key to our success. Come and be a part of this success.

Job Description

Position Specific Purpose:   

  • Conduct cybersecurity incident response activities as part of the Business Security Operations Centre (BSOC) with a focus on insider threat and data leakage events.
  • Responsible for technology application and data security activities, including definition and implementation of enterprise-wide protection rules and programs and providing input for selecting new tools and technologies to support application and data security management.

    
Core responsibilities include, but are not limited to:

  • Coordinate and lead the response to BSOC cybersecurity incidents in accordance with relevant policies and procedures.  
  • Use enterprise cybersecurity tools such as Splunk, Symantec, Netskope, Digital Shadows to monitor, analyse and identify insider threat activity.   
  • Provide advice and guidance to stakeholders including HR, Legal, Data Privacy, business units, line managers on BSOC cybersecurity incidents.  
  • Produce technical reports and performance metrics for dissemination to a wide range of internal and external stakeholders on BSOC cybersecurity incidents.
  • Facilitate data discovery by BU and define requirements to enable protection controls (sensitive data is identified, managed and accessible to relevant stakeholders only).
  • Develop and maintain playbooks and work instructions relating to BSOC activities.  
  • Support the Cybersecurity Operations Centre (CSOC) in responding to high priority cybersecurity incidents which have an insider threat component.  
  • Support the development of the application and data security framework, ensuring key controls are in place and operate effectively throughout the application and data lifecycle.
  • Support development and execution of the enterprise-wide application and data security program and associated performance metrics.
  • Support the activities to develop technical requirements, evaluate vendor solutions, develop architecture and design, and test of application and data security solutions in collaboration with application and data owners.
  • Provide application security services including application security scans, code reviews, DevSecOps support, API security and application security requirements
  • Establish appropriate controls to protect the confidentiality, integrity and availability of the application and/or data, including data sanitisation and anonymisation, in collaboration with Security Architects.
  • Advise application and data owners in understanding the future state problems and challenges in cybersecurity and work collaboratively with them to enhance capabilities. 
  • Work with Legal teams and application and data owners globally on risk identification for information protection, translating application and data owner's requirements into technical controls.
  • Assist and advise business teams with application and data security methodologies and best practices.
     

Skills and Other Qualifications

Pivotal Experiences 

  • 5 years of relevant experience in the industry (Mining, Resources, Banking or Telco), domain areas (Data Protection and Data Leak Prevention, Secury-by-Design Application Development, DevSecOps, Application & Data Security).
  • Very good understanding of Cybersecurity best practices, standards and guidelines
  • Knowledge and experience of Technology processes, systems and tools.


Skills, Accreditations and Qualifications     

  • Bachelor’s Degree in Computer Science, Engineering, or Management Information Systems
  • Certified Information Security Professional (CISSP) or Certified Information Security Manager (CISM)
  • Very good communication and stakeholder management skills 
  • Language English expert level and optional Spanish 

Supporting a Diverse Workforce

The size and magnitude of our business not only provides significant opportunity for professional development, but also attractive salary packages with performance based bonuses and unique BHP employee share program.

 

At BHP, we recognise that we are strengthened by diversity. We are committed to providing a work environment in which everyone is included, treated fairly and with respect. We are an Equal Opportunity employer and we encourage applications from women and Indigenous people. We know there are many aspects of our employees' lives that are important, and work is only one of these, so we offer benefits to enable your work to fit with your life. These benefits include flexible working options, a generous paid parental leave policy, other extended leave entitlements and parent rooms.

 

All qualified applicants will receive consideration for employment without regard to race, color, sex, national origin, age, religion, disability, sexual orientation, gender identity, protected veteran status, citizenship, genetic information or other protected status under federal, state or local laws.

 

BHP is an Equal Opportunity Employer - Minorities/Females/Veterans/Disability.

Apply now »