About Orica
At Orica, it’s the power of our people that leads change and shapes our futures. Every day, all around the world, our people help mobilise vital resources essential to progress. Established in 1874, we have grown to become the world leader in mining and civil blasting with a diverse team of more than 13,000 across the world.
It’s an exciting time to join us – we are shaping the future of mining through digital and automated technologies, embracing new ways of thinking, pioneering innovation, and reimagining the way we work.
About the role
We are delighted to announce that we are currently accepting applications for the position of Cyber Security Engineer, offering a hybrid working arrangement to be based in our office in Hyderabad, India.
The Cyber Security Engineer entails carrying out fundamental cybersecurity tasks such as managing threats and incidents, conducting vulnerability assessments, evaluating and authorizing technical modifications, generating metrics reports, and fulfilling other operational cyber security needs.
Under the supervision of the Cyber Security Operations Manager, the Cyber Security Engineer would handle the examination and resolution of security alerts, offer incident response and analysis, and collaborate with fellow security engineers to create and deploy technical measures for countering security risks and streamlining repetitive tasks.
What you will be doing
Monitor alerts across Security Stack and provide advanced detection and response service though security event analysis review. Perform incident response and basic malware analysis to investigate incidents. Help navigate Orica staff from incident response triage into the incident response process if findings are substantiated. Work with the senior security engineers and analysts in fine tuning the security systems removing any false positive alarms. Maintain current knowledge of tools and best practices in forensics and incident response and develop an understanding of advanced persistent threats, including tools, techniques, and procedures of attackers. Lead security vulnerability management program recommending best practices/solutions to address vulnerabilities, secure hosts, applications, databases, and network technologies. Strengthen security operations monitoring by extracting data from threat intelligence and develop understanding of adversary TTPs. Monitor the performance of security solutions to identify and bring to attention breaches and potential intrusion incidents. Monitor security logs and alerts from various sources, including intrusion detection systems, Endpoint Detection and Response (EDR) systems, and security information and event management (SIEM) tools. Investigate and analyse security incidents, identify root cause, and develop appropriate mitigation strategies. Execute security response actions, including full remote remediation of endpoints. Perform threat hunting and proactive analysis to identify potential security risks and vulnerabilities. Implement security frameworks including CIS Benchmarks, ASD Essential 8 on Orica systems. Handle cyber security incidents in conjunction with the existing service providers from detection through to completion including maintaining incident response documentation, post-mortem root cause analysis, writing incident reports and providing lessons learnt and enhancements required.
What you will bring
Tertiary level qualification in IT related discipline; or related industry qualification and industry experience. 7+ years’ experience working as security analyst or any other similar roles. 2 + years’ experience as a Systems/Network administrator, or Network Security analyst required. 2 + years year of advanced working knowledge of Windows and Linux operating systems required. Experience with security tools such as firewall logs, intrusion detection systems, Security Incident and Event Management. 1+ experience with automation tooling and frameworks such as Python, PowerShell and Terraform required. Experience in IT Infrastructure & application security, working in a large and complex environment. Experience with incident interpretation received from Cyber Security Operations Centre (SOC) and defining tasks required to deliver resolution. Strong experience in developing and maintaining Vulnerability Management process and procedures – Qualys, CrowdStrike Falcon Spotlight, Tenable. At least one Information Security industry certification such as CISSP, CEH, GIAC Security Certifications (GSEC / GCIH / GCIA), SANS. Good understanding of SIEM and other infrastructure level technologies -Windows, Linux, VMware, Azure, AWS and O365.
What we offer
As part of a truly global company, you will have the ability to grow and learn in a diverse, collaborative culture. We foster relationships and learning through connected global and local teams, promote flexible and diverse career paths and support the development of your knowledge and skills.
You will be paid a competitive salary, learn from talented individuals across multiple disciplines and be able to thrive in a safe workplace within a collaborative culture. Ignite your career at a place where your distinct potential can find its home.
We respect and value all
Orica promotes and fosters a culture of inclusion and Equal Opportunity Employment everywhere we operate. We treat our people and applicants with fairness, dignity, and respect, getting the best of everyone’s contributions.
All qualified applicants will receive consideration for employment without regard to race, religion, sexual orientation, gender perception or identity, nationality, age, military or veteran, marital or disability status.