Role descriptions. Global Opportunities in Cyber Security

Transcription

1 We are currently looking for people with skills and experience in Cyber Security. To see our available role descriptions, scroll down the document in the following order: 1. Principal Advisor Cyber Architecture 2. Principal Advisor, Cyber Security Industrial & Operational Technology 3. Penetration Tester, Cyber Delivery and Assurance 4. Security Engineer, Cyber Delivery and Assurance 5. Senior Advisor, Cyber Awareness 6. Senior Advisor, Cyber Risk 7. Senior Analyst, Security Monitoring and Incident Response 8. Senior Controls Specialist, ERP/SAP 9. Senior Specialist, Information Assurance/Compliance

2 Principal Advisor Cyber Architecture Role Purpose: To protect Rio Tinto s digital assets and industrial control systems through the on-going development, delivery and continuous improvement of cyber security architectures for cloud, industrial control systems and transformational programmes. Key Accountabilities: Developing innovative Cyber Security Architectures for Infrastructure, Software and Platform as a Service that address Rio Tinto s risk profiles and position future innovation. Developing and delivering guidance materials and architectural patterns for IS&T and business stakeholders Engaging with internal governance organisations to present architectural patterns and new ideas. Participate in transformation programmes and projects. Providing guidance and collaboratively solving technology problems to enable business outcomes while managing risk. Continuously improving architectures, strategies and programmes to meet the changing cyber risk profile of the organisation. Providing effective support for emerging and ongoing Rio Tinto initiatives. Staying informed of current developments in technology cyber security architecture and technology strategies. Maintain strong working relationships and providing architectural support for individuals and groups involved in managing cyber security risk across the organisation. Role Requirements: Degree-level tertiary qualification, industry certifications or equivalent practical experience. Minimum 3-5 years experience in information and cyber security OR 3-5 years experience in Cloud Architecture and the preparedness to evolve these skills to a Cyber Security role Demonstrable experience in developing architecture and guidance material Ability to communicate clearly, convincingly and with authority, both verbally and written, across diverse cultures at all levels in the organisation.

3 Strong interpersonal and communication skills to build credibility and collaboration. Ability to work in a global, multi-cultural organisation. Demonstrable ability to liaise with external and internal stakeholders, providing excellent customer service.

4 Principal Advisor, Cyber Security Industrial & Operational Technology Role Purpose: This position will work closely with existing IS&T Industrial & Operation Technology (I&OT) teams, Product Groups /Business Units (PG/BU) operational teams as well as the wider cyber security team. The position is ultimately required to guide and support PG/BUs to manage cyber security risk and increasing awareness of cyber security risk good practice with management and staff. With a strong focus on I&OT this role will: Provide effective cyber security guidance to enable the business in its journey to achieve world class I&OT operational innovation and effectiveness. Provide assurance that business critical production systems are effectively secured and monitored. In collaboration with Cyber Risk perform focused cyber security assessments of new or existing services and technologies pertaining to I&OT environments. Communicate risk assessment findings to customers and business partners. Provide consultative advice to customers to enable them to make informed risk management decisions. Identify appropriate controls to effectively manage risk. Provide effective operational governance of I&OT environments that delivers business value and enhance security. Reviews existing I&OT security architecture, identifies design gaps, and recommends security enhancement. Provide guidance and support to wider cyber security team with tasks pertaining to I&OT. Key Accountabilities: Support the implementation of enterprise wide cyber security ICS OT risk solutions that deliver business value and enhance overall operational security. Provide guidance to support the business to mitigate I&OT cyber security risks. Provide effective cyber security guidance to enable the adoption of emerging technologies, innovation and industry leading practices. Provide effective support to enable continuous improvement of I&OT cyber security operational hygiene, prevention, detection and incident response capabilities.

5 Support business adoption of I&OT security best practices. Develop, maintain and promote effective I&OT cyber security guidance and awareness training material. Maintain and communicate relevant I&OT operational technology security alerts. Provide effective support for emerging and ongoing Rio Tinto I&OT initiatives. Staying informed of current developments in I&OT and cyber security risk management, processes and technology. Developing collaborative channels of communication with relevant operational contacts and business stakeholders across the Group. Companion I&OT cyber-security initiatives Role Requirements: Degree-level tertiary qualification or equivalent practical experience Substantial experience (either operations or cyber security based) from like industry where I&OT are critical to the success of operations e.g. mining, petrochemicals, power). Ability across a range of cyber risk related skills and technologies. Understanding of cyber risk and governance methods, frameworks and processes. Proven ability to define safeguards to mitigate threats and risks within new and existing business processes / businesses. Ability to exercise effective independent judgment, to prioritise and deliver business results in a fast moving, high pressure and demanding environment with competing priorities. Ability to communicate clearly, convincingly, and with authority across diverse cultures at all levels in the organization. Strong interpersonal and communication skills to build credibility and collaboration. Ability to work in a global, multi-cultural organization Demonstrated ability to liaise with external and internal stakeholders, providing excellent customer service. Ability to work across multiple time zones and travel, if required.

6 Penetration Tester, Cyber Delivery and Assurance Role Purpose: To perform ongoing penetration tests and coordinate remediation of issues identified with the Business. The role is to also assist in the provision of security operations and assurance services, in alignment with Cyber Security s mission to protect Rio Tinto s Digital Assets (including Industrial Control Systems) to a level of confidentiality, integrity and availability commensurate with the threat to those assets and their value to Rio Tinto. Key Accountabilities: Act as an internal subject matter expert on Penetration testing and remediation Responsible for the management and development of the toolset used to deliver penetration testing services and also the delivery of penetration testing services designed to safeguard the company s assets, intellectual property and computer systems Where external vendors are engaged to perform independent penetration testing, manage those vendors in delivery of the service Assist in the delivery and continuous improvement of vulnerability management services Contribute to the development and improvement of security operations and assurance processes and solutions as required to support our cyber security program Contribute to the development of cyber security toolsets and also the reporting of metrics to Cyber Security, IS&T and the Business. Be an active team member in the day to day delivery of Cyber Security operations services. Identify Continuous Improvement (efficiency and effectiveness) opportunities with respect to penetration testing services, based on feedback from team and observations of process and deliverables Role Requirements: Bachelor s degree or equivalent experience At least 5 years of hands on experience in penetration testing and information security. Leading professional and practitioner in the cyber security field, with deep knowledge and experience in a breadth of cyber security topics

7 Experience working within a global team setting Experience using Splunk is an advantage. Experience coordinating complex operational activities with IT services departments Certifications like CREST, GCIA, GCIH and CISSP (or equivalent) desirable

8 Security Engineer, Cyber Delivery and Assurance Role Purpose: To deliver operational Cyber Security Engineering expertise to assist in the provision of security operations and assurance services, in alignment with Cyber Security s mission to protect Rio Tinto s Digital Assets (including Industrial Control Systems) to a level of confidentiality, integrity and availability commensurate with the threat to those assets and their value to Rio Tinto. Key Accountabilities: Management and continuous improvement of our Splunk environment that underpins our cyber security operations team Subject Matter expert for overall development and integration of all Cyber Security Operations processes\toolsets and delivery of reporting and dashboards to display real time information. Assist in the project design and delivery of how new security controls are integrated into current toolsets and processes to deliver security operations Assist in the delivery and continuous improvement of Advanced Threat Detection services Contribute to the development of cyber security toolsets and also the reporting of metrics to Cyber Security, IS&T and the Business. Be an active team member in the day to day delivery of Cyber Security operations services. Assist in the delivery of global cyber security projects Identifies Continuous Improvement (efficiency and effectiveness) opportunities to support delivery and operations, based on feedback from team and observations of process and deliverables Building and maintaining key stakeholder relationships Develop and maintain business-relevant metrics to measure the efficiency and effectiveness of the program in order to increase the maturity of the security program Role Requirements: Bachelor s degree or equivalent experience At least 5 years of hands on experience in information security and IT service delivery Leading professional and practitioner in the cyber security field, with deep knowledge

9 and experience in a breadth of cyber security topics Demonstrated experience in Splunk and Splunk Enterprise Security Experience in Advanced Threat Detection services like FireEye an advantage Experience coordinating complex operational activities with IT services departments Certifications like GCIA, GCIH and CISSP (or equivalent) desirable.

10 Senior Advisor, Cyber Awareness Role Purpose: To protect Rio Tinto s digital assets and industrial control systems through the on-going development, delivery and continuous improvement of cyber security awareness programmes, communication strategies and related requirements and guidance materials. Key Accountabilities: Developing innovative communication and awareness strategies for cyber security good practice that enable customers to comply with cyber security requirements and empower them to make informed cyber security risk decisions. Developing and delivering creative and imaginative cyber security awareness programmes. Measuring and reporting the success of the cyber security communication and awareness strategies. Continuously improving the strategies and programmes to meet the changing cyber risk profile of the organisation. Contributing to the management of effective cyber security governance across the organisation, including the on-going development of cyber security standards and guidance documents. Providing effective support for emerging and ongoing Rio Tinto initiatives. Staying informed of current developments in cyber security communication and awareness strategies. Maintain strong working relationships with individuals and groups involved in managing cyber security risk across the organisation. Developing collaborative channels of communication with cyber security contacts and business stakeholders across the Group. Role Requirements: Degree-level tertiary qualification or equivalent practical experience. Minimum 3-5 years experience in information and cyber security. Demonstrable experience in managing and deploying cyber security communication and awareness strategies and programmes. Knowledge and experience of cyber security governance methods, frameworks and processes. Ability to communicate clearly, convincingly and with authority, both verbally and

11 written, across diverse cultures at all levels in the organisation. Strong interpersonal and communication skills to build credibility and collaboration. Ability to work in a global, multi-cultural organisation. Demonstrable ability to liaise with external and internal stakeholders, providing excellent customer service.

12 Senior Advisor, Cyber Risk Role Purpose: The position is required to support the identification, analysis and management of information and cyber security risk across Rio Tinto. The role will continue the improvement of cyber security awareness and good cyber risk practices with management and staff. The role will: Perform cyber risk assessments of new or existing services and technologies. Communicate risk assessment findings to customers and business partners. Provide consultative advice to customers to enable them to make informed risk management decisions. Identify appropriate controls to effectively manage risk. Provide effective governance of enterprise-wide cyber risk solutions that deliver business value and enhance security. Support emerging and existing Rio Tinto projects and initiatives. Key Accountabilities: Supporting the implementation of enterprise-wide cyber risk solutions that deliver business value and enhance overall enterprise security. Providing effective support for emerging and ongoing Rio Tinto initiatives. Promoting continuous improvement of security risk assessment methods and procedures. Staying informed of current developments in information and cyber security risk management, processes and technology. Maintain strong working relationships with individuals and groups involved in managing information risks across the organisation. Developing collaborative channels of communication with relevant information security contacts and business stakeholders across the Group. Role Requirements: Degree-level tertiary qualification or equivalent practical experience. Ability to communicate clearly, convincingly and with authority in both verbally and written, across diverse cultures at all levels in the organisation. Strong interpersonal and communication skills to build credibility and collaboration.

13 Demonstrated ability to liaise with external and internal stakeholders, providing excellent customer service. Minimum 3 years of experience in information and cyber security risk and/or governance and minimum 5-7 years in general information and cyber security. Knowledge across a range of information / cyber risk related skills and technologies including cloud services / cloud service providers and associated security. Understanding of cyber risk and governance methods, frameworks and processes. Proven ability to define safeguards to mitigate threats and risks within new and existing business processes / businesses. Ability to work in a global, multi-cultural organisation

14 Senior Analyst, Security Monitoring and Incident Response Role Purpose: To provide security monitoring and incident response services required by the business, in alignment with Cyber Security s mission to protect Rio Tinto s Digital Assets (including Industrial Control Systems) to a level of confidentiality, integrity and availability commensurate with the threat to those assets and their value to Rio Tinto. Key Accountabilities: Act as an internal expert on matters relating to intrusion detection and incident response Monitor the environment and lead investigations regarding cyber security breaches across the group including cloud and industrial control environments Provide a coordinated response to complex cyber-attacks that pose a threat to the company s assets, intellectual property, computer and industrial control systems Leverage threat, business and open-source intelligence sources to guide detection and response activities Contribute to the development and improvement of security monitoring and incident response processes and solutions as required to support our cyber security program Develop or contribute to the development of bespoke tools to facilitate detection and response activities Research and recommend solutions for incident response and intrusion detection Contribute to the development and maintenance of policies and procedures for: o o o Security monitoring and incident response Preservation and analysis of relevant data from electronic sources, including laptop and desktop computers, servers and mobile devices Reverse-engineering of known and suspected malware files Role Requirements: Bachelor s degree or equivalent experience At least 5 years of hands on experience in information security, with specific experience areas like penetration testing, intrusion detection and incident response Leading professional and practitioner in the cyber security field, with deep knowledge and experience in a breadth of cyber security topics Experience in mobile device, network or memory forensics is desirable

15 Experience or interest in the fields of malware analysis, threat intelligence or software development Experience coordinating complex response activities with IT services departments Certifications like GCIA, GCIH and CISSP (or equivalent) desirable

16 Senior Controls Specialist, ERP/SAP Role Purpose: To provide efficient and effective controls design and governance for Rio Tinto s global ERP instance, supporting technology and interfaces. The role assists the design, implementation and maintenance of a framework of internal controls, undertake risk and control assessment, and design and review controls to manage information security risk. Key Accountabilities: Sustain effective relationships with business process representatives, delivery teams, governance, risk and compliance teams including internal & external assurance providers Consult and collaborate with solution design and governance teams in relation to controls design, governance considerations, project scoping, estimation and definitions Execute, test and embed a risk and controls framework for change and release delivery and special projects. Identification of critical constraints in effective controls delivery and identification of options when required Provide effective facilitations where required between Rio Tinto and partner teams for activities related to management & SOX assurance programmes Support the operation of control monitoring processes related to management and SOX assurance programmes, including execution, monitoring and reporting, and execution of remediation actions as required Maintenance of control environment framework documents, guides, tools and training materials, and development of new guides and training materials as required Analyse, respond to range of ad hoc controls related enquires Role Requirements: Good understanding of risk management concepts, control design and analysis for a large organisation Demonstrated experienced in roles specialising in IT risk management, application controls, and IT general controls Knowledge of COBIT and leading GRC applications Knowledge and skills in SOX compliance and internal audit Good understanding of SAP ERP, SaaS and mobile systems 5+ years relevant experience and relevant professional quals

17 Excellent communication skills and Strong interpersonal skills Ability to work unsupervised with high personal standards/integrity Ability to work in highly deadline driven environment

18 Senior Specialist, Information Assurance/Compliance Role Purpose: To support and execute effective assurance assessments and monitoring requirements for key controls in alignment with Cyber Security s mission to protect Rio Tinto s Digital Assets. The role will also contribute to the implementation and maintenance of a control framework which guides assurance activities which will require engagement across Rio Tinto teams, partners, and assurance stakeholders, both internal and external. Key Accountabilities: Assess operating effectiveness key controls established to protect Rio Tinto s Digital Assets, not limited to but including controls relevant to third party provider services, cloud delivered services Where identified as required, undertake control assessments and apply technical and business experience guiding any further required control establishment via consulting and collaborate with solution and governance teams. Contribute to the enablement, embedding and effectiveness of a framework of controls which guide Rio Tinto cyber assurance requirements. Development, maintenance of framework documents, guides, tools and training material as required. Undertake ad hoc assurance reviews as required Maintain strong working relationships with individuals and groups involved in managing cyber risk for the organisation. Includes Rio Tinto GRC representatives, delivery teams, 3rd Party delivery vendors and service providers, internal & external Rio Tinto assurance providers Role Requirements: Experienced in roles specialising in IT risk management, application controls, and IT controls, preferably where a outsourced IT environment has been implemented Ideally, a good understanding of IT industry third party service arrangements, Cloud services Illustrated knowledge and and experience in a breadth of cyber security topics and assurance requirements Excellent communication skills and strong interpersonal skills Ability to work unsupervised with high personal standards/integrity, and ability to work in highly deadline driven environment

19 Experience: 5+ years relevant experience in risk management and control design for a large organisation Relevant professional qualifications