.

About South32

South32 is a globally diversified mining and metals company. Our purpose is to make a difference by developing natural resources, improving people’s lives now and for generations to come. We are trusted by our owners and partners to realise the potential of their resources. We produce bauxite, alumina, aluminium, metallurgical coal, manganese, nickel, silver, lead and zinc at our operations in Australia, Southern Africa and South America. With a focus on growing our base metals exposure, we also have two development options in North America and several partnerships with junior explorers around the world.

The Opportunity

As a Security Awareness Specialist, you will be responsible for fostering cyber security awareness within our organisation through the delivery of a global awareness program comprised of communications, training and simulations.

You will be expected to execute and continually optimise the awareness program and associated materials to ensure the adoption of cyber security best-practices, increase in awareness of cyber threats and compliance to training materials.

You will also assist in the governance and risk management of South32’s cyber risk and controls by supporting the Cyber Risk Specialists, providing pragmatic cyber security advice, supporting or undertaking security risk assessments and supporting the development and implementation of cyber security standards and guidelines.
This role offered on a Permanent basis.

Accountabilities

Primary responsibilities are to:

Security Awareness

• Continually assess and seek to improve the awareness level for cyber security across South32
  

• Develop and manage the on-going cyber security awareness program, planning up to 12 months in advance
  

• Manage phishing simulations including administration of the phishing simulation platform and reporting test outcomes

Cyber Risk. Governance & Compliance

• Provide pragmatic cyber security guidance to the business for new technology-enabled programs
  

• Perform security risk assessments for new and existing technologies to identify risks and provide guidance on appropriate controls
  

• Develop and maintain cyber security risk and control documentation e.g. cyber control frameworks and control verification
  

• Help drive the adoption of cyber security standards and guidelines across the organisation
  

• Assist with risk, assurance and audit assessments of cyber processes as required

Key shared responsibilities:

• Keep up to date on emerging cyber security threats and contribute to an organisation wide view of cyber security risk
  

• Support the identification of top people-related risks to the organisation and the behaviours that must change to mitigate those risks
  
  Qualifications, Experience and Technical Skills

• Vocational certificate in TAE40116 Certificate IV in Training and Assessment, or tertiary qualifications in Cyber Security, Information Technology or STEM Majors
  

• Cyber security related certifications/qualifications desirable
  

• A demonstrated interest in cyber security, privacy and/or risk
  

• Strong stakeholder engagement and communication skills and a portfolio of high-quality content (for example, but not limited to, learning content, blogs, branding campaigns) including written and verbal
  

• Experience in the design and delivery of training and awareness programs, stakeholder engagement and communications activities
  

• Knowledge of leading cyber security frameworks such as NIST CSF, ISO, MITRE ATT&CK and OWASP

Our benefits

• Competitive Salaries
  

• Industry leading parental leave and family care policy

• Flexible working arrangement
  

• Free onsite fitness classes
  

• Education and career development
  

• Participation in the Employee Share Plan
  

• Incentive bonuses
  

• Additional employer superannuation contributions which depend on the level of employee contributions you choose.

Location

This role will be based at our corporate office in the heart of Perth CBD with stunning river views.

Our culture

At South32, our people are fundamental to our success. We’re focused on creating an inclusive workplace, with the right people in the right roles, who are engaged, empowered and appropriately rewarded.
We aspire to be an inclusive organisation, where our workforce reflects the broader demographic of the countries and communities where we operate.

South32 embraces diversity and encourages applications from people of all backgrounds.

Please note: This advertisement will close on the 27th July 2022