Entity:

Technology

Job Family Group:

IT&S Group

Job Description:

You will work within the CT&E Team

This team is responsible for response and management of cyber incidents, utilizing an intelligence-led approach for identification, mitigation, and rapid response to safeguard bp on a global scale. By applying lessons learned and data analytics, this team also establishes engineering principles and enhances the technology stack to continuously bolster bp's cybersecurity posture.

Let me tell you about the role

We are looking for a Lead Data Security Engineer to drive data protection across bp by setting standards, defining controls, and monitoring for compliance. You will lead a small team focused on developing and evolving data security policies, ensuring alignment with business needs and regulatory requirements, and identifying areas of non-compliance across cloud and on-prem environments.

This role will not directly implement controls, but rather define what “good looks like,” provide guidance to teams across bp, and monitor compliance through reporting, reviews, and collaboration.

You will play a key role in shaping bp’s data security agenda and in building a culture of data stewardship and protection.

What you will deliver

• Develop and maintain enterprise data security standards, frameworks, and control objectives, including but not limited to: Data Loss Prevention (DLP), data classification, encryption, data retention, data access governance, and monitoring.

• Partner with security architects and platform teams to ensure secure-by-default configurations and data handling practices.

• Define and maintain baselines for data protection tools and technologies across structured and unstructured data.

• Monitor compliance with security standards and policies across business units and platforms; report gaps and recommend remediation strategies.

• Establish data security metrics, KPIs, and dashboards to track compliance, maturity, and risk exposure.

• Serve as authority for Data Security, staying ahead of evolving threats, technologies, regulations (e.g., GDPR, HIPAA, CCPA), and industry standards (e.g., NIST, ISO 27001).

• Provide expert input into risk assessments, architectural reviews, and governance processes for data initiatives.

• Collaborate across engineering, compliance, privacy, and risk teams to embed data protection principles into business and technical strategies.

• Lead security reviews, identify gaps, and drive continuous improvement in data protection practices.

• Mentor and grow a team of security engineers focused on standards, data-centric threat modeling, and strategic compliance monitoring.

What you will need to be successful (experience and qualifications)

• 6+ years of experience in cybersecurity, with at least 3 years specifically in Data Security, including areas such as DLP, data lifecycle governance, privacy engineering, or data classification and handling.

• Solid background in setting and managing enterprise-wide security standards and frameworks.

• Experience with DLP tools (e.g., Microsoft Purview), data security monitoring platforms, and data access governance solutions.

• Deep understanding of the data lifecycle (create, store, use, share, archive, delete) and associated security risks and controls.

• Familiarity with cloud-native data services and how to apply data security controls across AWS, Azure, and hybrid environments.

• Ability to read and write code/scripts to support automation or compliance tooling (e.g., Python, PowerShell, JSON/YAML for IaC).

• Strong collaboration and stakeholder engagement skills, especially with product, data, compliance, and infrastructure teams.

• Passion for mentorship and fostering a culture of continuous improvement and shared accountability.

About bp

bp is a global energy business with a purpose to reimagine energy for people and our planet. We aim to be a very different kind of energy company by 2030, helping the world reach net zero and improving people’s lives. We are committed to creating a diverse and inclusive environment where everyone can thrive. Join bp and become part of the team building our future!

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Travel Requirement

No travel is expected with this role

Relocation Assistance:

This role is not eligible for relocation

Remote Type:

This position is a hybrid of office/remote working

Skills:

Legal Disclaimer:

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us.

If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.