OT Security Operations AnalystTechnicalInformation Management - Brisbane, Australia - De Beers Group

    De Beers Group
    De Beers Group Brisbane, Australia

    2 weeks ago

    Default job background
    Entry Level / Permanent Employee
    Description
    Job Description:

    Working as part of a global team in Anglo American's Information Management department, you will support security operations within operational technologies (OT), identifying and responding to potential threats and incidents, to safeguard critical systems and data, and ensure operational continuity and security

    The role will be rewarding and varied and will involve the following:

  • Monitor and analyse security events and incidents related to operational technology (OT) systems
  • Control and coordinate the monitoring and use of cyber defence tools for the local business(es), managing ticket and team resolutions and driving efficiency where possible.
  • Contribute to the development of Standard Operating Procedures (SOPs) and other publications to support local teams in responding to security incidents.
  • Manage, maintain and administer cyber defence tooling for the business; including the management of local assets ensuring all devices within scope are captured within tools.
  • Support incident management from regional to global level, providing feedback to key business stakeholders.
  • Coordinating departments during incidents and establishing required work and dissemination of tasks to relevant business personnel.
  • Develop remediation strategies and gain business unit buy in for actions required.
  • Investigate and respond to security breaches in OT environments
  • Prepare and plan regular security assessments and vulnerability scans for OT systems
  • Collaborate with OT and IT teams to implement security controls and best practices
  • Facilitate technical support during security incident response
    • Qualifications:
  • A relevant degree within IT/IM or a related field
  • Professional certifications in Information security from industry standard frameworks (e.g. ISACA, BCS, CIPP, ITIL, Crest, ISC2, COPTIA)
  • Advanced knowledge of OT systems (ICS, SCADA), network architecture, network protocols, security best practices and response processes.
  • Familiarity with the ISA95/98 and Purdue models for industrial IT and the typical operating practices in that engineering environment
  • Understanding of operational risk posed by cyber physical environments
  • Working knowledge of ISA95, IEC 62443 and NIST SP 800-82r3.
  • Familiarity with firewalls, intrusion detection/prevention systems (IDS/IPS), and network monitoring tools
  • Working knowledge of automated malware analysis programs
  • Proficiency in securing various operating systems, including Windows, Linux, and macOS
  • Working knowledge of SIEM and other volumetric data systems
  • Knowledge of industry standard security products, including end point agents, remote capturing tools and other security related products
  • Ability to obtain and act on vulnerability information and conduct security risk assessments, investigations, business impact analysis and accreditation on complex information systems.