Entity:

Technology

Job Family Group:

IT&S Group

Job Description: Job descripton:

To enable the world to reach net zero, bp are looking for the brightest digital specialists to drive innovation as it transitions from an International Oil Company (IOC) to an International Energy Company (IEC).

Passionate about identifying and crafting security solutions that make bp a cyber resilient organisation, the Information Security team partner with business teams to help them understand cyber risk and take personal ownership for cyber security!

We’re looking for curious minds who are driven by opportunities to build value and deliver secure digital products and services to advance the global energy transition.

Role Synopsis

In the digital era, where data breaches and cyber threats are not just possibilities but realities, the role of an Information Security Lead has never been more critical. Our partnership with the business is essential to ensuring the confidentiality, integrity, and availability of an organisation's data and information systems.

Offering insights that influence the development and deployment of secure, resilient solutions & services. Your expertise enables teams to innovate with confidence, knowing their solutions align with the highest standards of data protection and regulatory compliance.

Key Accountabilities

In this role you will be responsible for the delivery of security activities to ensure swift business value realization. This role focuses on information security and digital security risk activities with the following key accountabilities:

• Relationship and Customer management: Act as the main point of contact for all Digital Security enquiries within the relevant business portfolio. Build strong partnerships and influence positive change that serves the commercial ambitions.
• Security Expertise:

Provide technical expertise, implementing digital security operating processes aligned to security standards across all value stream activities.

• Safety:

Prioritize cyber and operational safety, improve digital security controls through architecture designs and process to maintain our cyber posture and react to new threats.

You will:

• SAP Cyber Security Advisory and Assurance:

Provide security guidance for SAP landscapes, partnering with SAP and business teams to identify and mitigate cyber risks and to strengthen security controls across SAP platforms.

• Monitor and Assess: Keep a vigilant eye on our digital domains, using innovative tools to detect and assess threats. This includes collaborating on the identification, assessment and management of risk
• Strategize and Protect: Develop and implement robust security measures, crafting a secure environment for our data and systems.
• Respond and Recover: Partner Customers during security incidents with a calm, calculated approach, minimising impact and guiding recovery efforts.
• Educate and Advocate: Champion security awareness across the organisation, encouraging vigilance and responsibility.
• Innovate and Guide: Provide strategic insights to teams, ensuring security is a cornerstone of product development and business operations.
• Protect & Defend:

Proactively mitigate cyber risks and coordinate the remediation of findings from vulnerability scans, supplier assurance, compliance reviews, and support the digital Delivery teams in maintaining high levels of cyber hygiene.

Education

• Preferably B.Tech or BSc in Information Security or equivalent.
• Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) or working towards certification.
• SAP Certified Technology Professional
• System Security
• Knowledge of security frameworks such as ISO 27001/2, NIST, and CIS framework is highly helpful.

Desirable Experience and Capability

• Previous track record in similar roles in SAP ,Finance, HR, Trading, Retail, Supply or Oil and Gas companies.
• Strong influencing skills that enable you to communicate technical information to both technical and non-technical audiences, clearly and concisely.
• Deep technical knowledge, and experience delivering security solutions and providing technical advice.
• A track record of delivering business benefits by balancing the need to protect the organization’s commercial ambitions and maintain operations of the core value streams.
• Experience working within developing digital ecosystems, with multiple partners and environments, ensuring suitable digital security standards and practices delivered and maintained.
• Good understanding of enterprise and operational risk management, risk governance and compliance requirements.
• Excellent project management skills, with the ability to lead multiple projects simultaneously.
• Able to adapt to shifting priorities, demands, and timelines and keep customers abreast of impact (potential or actual) to defined delivery timescales and/or business impact.
• Ability to use technology, data, and insights to enable decision making.
• Expertise in SAP Security, including working with SAP customers/teams to assess and mitigate cyber risks across SAP applications and platforms.
• Knowledge and exposure to managing SAP on RISE engagements would be an added advantage.

Additional Information

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.

Even though the job is advertised as full time, please contact the hiring manager or the recruiter as flexible working arrangements may be considered.

Travel Requirement

Up to 10% travel should be expected with this role

Relocation Assistance:

This role is eligible for relocation within country

Remote Type:

This position is not available for remote working

Skills:

Consulting, incident investigation and response, Incident Management, Information Assurance, Information Security, Information security behaviour change, Risk Management, Stakeholder Management, Supplier Relationship Management, Supplier security management

Legal Disclaimer:

We are an equal opportunity employer. We do not discriminate on the basis of protected characteristics like race, religion, color, sex, national origin, sexual orientation, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us.

If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.