IT Systems Security Analyst – Corporate Governance, Benefits

About the Company

BHP is a world-leading resources company. We extract and process minerals, oil and gas, with 80,000 employees and contractors, primarily in Australia and the Americas. Our purpose is to bring people and resources together to build a better world. We are committed to fostering a diverse and inclusive workplace where everyone feels safe, respected, and can contribute their best work. At BHP, we believe in using technology to drive innovation and maintain the highest standards of operational excellence and corporate governance.

Job Description

We are seeking a highly motivated IT Systems Security Analyst to join our Corporate Governance and Benefits team in Fremantle. In this critical role, you will be instrumental in safeguarding our information systems, with a specific focus on ensuring the security and integrity of systems related to corporate governance, compliance, and employee benefits. You will work within a dynamic environment, contributing to the development, implementation, and enforcement of security policies and procedures, conducting security assessments, and responding to security incidents to protect BHP’s valuable assets and maintain regulatory adherence. This position requires a keen eye for detail, a strong understanding of cybersecurity principles, and the ability to apply them within a large enterprise setting.

Key Responsibilities

• Conduct security assessments and vulnerability scans on IT systems, particularly those related to corporate governance and employee benefits.
• Monitor security systems (SIEM, EDR) for anomalies and potential security incidents, escalating and responding as necessary.
• Assist in the development, review, and enforcement of information security policies, standards, and guidelines in alignment with corporate governance frameworks.
• Participate in incident response activities, including investigation, containment, eradication, and recovery.
• Collaborate with internal audit, legal, and HR teams to ensure compliance with relevant regulations (e.g., GDPR, APRA, ISO 27001).
• Provide security awareness training and guidance to internal stakeholders.
• Evaluate and recommend security enhancements to existing systems and new projects.
• Maintain up-to-date knowledge of current cybersecurity threats, trends, and technologies.

Required Skills

• Proficiency in security information and event management (SIEM) tools.
• Strong understanding of network security principles (firewalls, intrusion detection/prevention systems).
• Experience with operating system security (Windows Server, Linux).
• Familiarity with cloud security concepts and best practices (Azure, AWS).
• Knowledge of corporate governance frameworks (e.g., ISO 27001, NIST CSF).
• Excellent analytical and problem-solving skills.
• Strong written and verbal communication abilities.
• Ability to work independently and as part of a team.

Preferred Qualifications

• Bachelor's degree in Computer Science, Information Security, or a related field.
• Industry certifications such as CompTIA Security+, CISSP, CISM, or relevant GIAC certifications.
• Experience with data privacy regulations (e.g., GDPR, CCPA).
• Previous experience in the mining, resources, or finance industry.
• Familiarity with enterprise-level HRIS and benefits management systems.

Perks & Benefits

• Competitive salary and performance-based bonuses.
• Comprehensive superannuation scheme.
• Private health insurance options.
• Generous paid leave and flexible work arrangements.
• Professional development and training opportunities.
• Employee assistance program and wellbeing initiatives.
• Employee share plan opportunities.
• On-site gym and wellness facilities (Fremantle office).

Apply Now