Cyber Security Engineer

About Orica

At Orica, it’s the power of our people that leads change and shapes our futures.  Every day, all around the world, our people help mobilise vital resources essential to progress. Established in 1874, we have grown to become the world leader in mining and civil blasting with a diverse of team of more than 13,000 across the world. 

It’s an exciting time to join us – we are shaping the future of mining through digital and automated technologies, embracing new ways of thinking, pioneering innovation and reimagining the way we work.

About the role

We are delighted to announce that we are currently accepting applications for the position of Cyber Security Engineer, offering a hybrid working arrangement to be based in our office in Hyderabad, India.

The Cyber Security Engineer entails carrying out fundamental cybersecurity tasks such as managing threats and incidents, conducting vulnerability assessments, evaluating and authorizing technical modifications, generating metrics reports, and fulfilling other operational cyber security needs.

Under the supervision of the Cyber Security Operations Manager, the Cyber Security Engineer would handle the examination and resolution of security alerts, offer incident response and analysis, and collaborate with fellow security engineers to create and deploy technical measures for countering security risks and streamlining repetitive tasks.
 

What you will be doing

• Perform Security incident response. Monitor alerts across Security Stack and provide advanced detection and response service though security event analysis review.
• Perform incident handling and response, including Investigate and analyze security incidents, identify root cause, and develop appropriate mitigation strategies.
• Perform threat hunting and proactive analysis to identify potential security risks and vulnerabilities.
• Maintain current knowledge of tools and best practices in forensics and incident response and develop an understanding of advanced persistent threats, including tools, techniques, and procedures of attackers.
• Help navigate Orica staff from incident response triage into the incident response process if findings are substantiated.
• Work with the senior security engineers and analysts in fine tuning the security systems removing any false positive alarms.
• Lead security vulnerability management program recommending best practices/solutions to address vulnerabilities, secure hosts, applications, databases, and network technologies.
• Strengthen security operations monitoring by extracting data from threat intelligence and develop understanding of adversary TTPs.
• Monitor the performance of security solutions to identify and bring to attention breaches and potential intrusion incidents.
• Monitor security logs and alerts from various sources, including but not limited to intrusion detection systems, Endpoint Detection and Response (EDR) systems, and security information and event management (SIEM) tools.
• Execute security response actions, including full remote remediation of endpoints and other Orica Assets.

What you will bring

• Tertiary level qualification in IT related discipline; or related industry qualification and industry experience.
• 5 + years’ experience working a security engineer or similar Cyber Security role.
• 3 + years’ cybersecurity experience including risk assessments, systems engineering, and secure architecture required\
• More than 3 years of experience in SIEM
• 2 + years’ experience as a Systems Administrator (windows & Linux)
• Experience in investigating threats, utilizing OSINT, closed sources, and other research techniques to uncover threat actors and their TTPs while providing context to threats and reaching conclusions from incomplete or missing data.
• Technical know-how on extracting threat data (IP's, domains, ports, malware, and malicious communications) from multiple sources
• Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies required
• Working knowledge on cloud platform from AWS, Microsoft Azure 
• At least one Information Security industry certification such as SSCP, CISSP, CEH, CCNA, SANS GIAC Security Certifications (GSEC / GCED / GSIP).
• Knowledge of ISO 27001/2, NIST CSF and related standards/frameworks, privacy legislation and security policies.

What we offer

As part of a truly global company, you will have the ability to grow and learn in a diverse, collaborative culture. We foster relationships and learning through connected global and local teams, promote flexible and diverse career paths and support the development of your knowledge and skills. 

You will be paid a competitive salary, learn from talented individuals across multiple disciplines and be able to thrive in a safe workplace within a collaborative culture. Ignite your career at a place where your distinct potential can find its home.

We respect and value all

Orica promotes and fosters a culture of inclusion and Equal Opportunity Employment everywhere we operate. We treat our people and applicants with fairness, dignity, and respect, getting the best of everyone’s contributions.

All qualified applicants will receive consideration for employment without regard to race, religion, sexual orientation, gender perception or identity, nationality, age, military or veteran, marital or disability status.