Operational Information Security Specialist in Not Specified

LOCATION:


Job profile summary:

BP has embarked on an ambitious plan to modernize and transform using digital technologies to drive efficiency, effective and new business models. As an Operational IS Specialist, you will be responsible for supporting information security and risk activities for Operational Security Management, using sound technical capabilities to review and adjust information security processes, supporting the delivery of security solutions, recommending improvements to security strategies and managing external service providers, as required.

At IT&S, all the roles are within Chapters. While your role will continue to remain within the Chapter, your initial activities described below may change over time.

Key Accountabilities:

Team: You will provide sound technical expertise in support of information security and risk activities specific to the specialism to achieve objectives e.g. supporting the development and implementation of the information security governance and compliance process across BP Group, reporting on the effectiveness of security procedures and safeguards and recommending the best approach for segments/functions, delivering security solutions to projects across the design, build and execution phases etc. You will support the implementation and application of relevant operating processes and procedures, and ensure all activities adhere to the relevant standards.

Relationships: You will liaise with various teams and senior stakeholders across BP to advise on information security and risk and manages third party service providers that are helping to deliver related projects as required. You will seek opportunities for continuous improvement within the specialism in response to internal and external developments. working with team members to identify continuous improvement plans. You will ensure compliance with BP's Code of Conduct and models BP's Values & Behaviours.

Safety and Compliance: Safety of our people and our customers is our highest priority. We will advocate and help ensure our architectures, designs and processes enhance a culture of operational safety and improve our digital security.

-->

Job profile summary:

BP has embarked on an ambitious plan to modernize and transform using digital technologies to drive efficiency, effective and new business models. As an Operational IS Specialist, you will be responsible for supporting information security and risk activities for Operational Security Management, using sound technical capabilities to review and adjust information security processes, supporting the delivery of security solutions, recommending improvements to security strategies and managing external service providers, as required.

At IT&S, all the roles are within Chapters. While your role will continue to remain within the Chapter, your initial activities described below may change over time.

Key Accountabilities:

Team: You will provide sound technical expertise in support of information security and risk activities specific to the specialism to achieve objectives e.g. supporting the development and implementation of the information security governance and compliance process across BP Group, reporting on the effectiveness of security procedures and safeguards and recommending the best approach for segments/functions, delivering security solutions to projects across the design, build and execution phases etc. You will support the implementation and application of relevant operating processes and procedures, and ensure all activities adhere to the relevant standards.

Relationships: You will liaise with various teams and senior stakeholders across BP to advise on information security and risk and manages third party service providers that are helping to deliver related projects as required. You will seek opportunities for continuous improvement within the specialism in response to internal and external developments. working with team members to identify continuous improvement plans. You will ensure compliance with BP's Code of Conduct and models BP's Values & Behaviours.

Safety and Compliance: Safety of our people and our customers is our highest priority. We will advocate and help ensure our architectures, designs and processes enhance a culture of operational safety and improve our digital security.



Job Advert:

Essential Education:

  • College Degree or Technical Certification (SANS, Cyber Security).
  • Direct working experience may also substitute for degree.
  • SANS Certification: One or more of: CompTIA Security, GCIA, GCFA, GCFE, GCIH.

Technical capability:

Information Security
  • Develops and communicates corporate information security policy, standards and guidelines.
  • Contributes to the development of organisational strategies that address information control requirements.
  • Identifies and monitors environmental and market trends and pro-actively assesses impact on business strategies, benefits and risks.
  • Leads the provision of authoritative advice and guidance on the requirements for security controls in collaboration with experts in other functions e.g. legal, technical support.
  • Ensures architectural principles are applied during design to reduce risk and drives adoption and adherence to policy, standards and guidelines.

Systems Integration
  • Establishes standards and procedures across the IT service lifecycle (including the development lifecycle) in the areas of systems integration and testing and ensures that practitioners adhere to them.
  • Manages resources to ensure that the systems integration function operates effectively.

Innovation
  • Actively monitors for, and seeks, opportunities, new methods, trends, capabilities and products to the advancement of the organisation.
  • Clearly articulates, and formally reports potential benefits from both structural and incremental change.
  • Encourages and motivates colleagues to share creative ideas and learn from failures.

Data Analysis
  • Sets standards for data analysis tools and techniques, advises on their application, and ensures compliance.
  • Manages the investigation of corporate data requirements, and co-ordinates the application of data analysis and data modelling techniques, based upon a detailed understanding of the corporate information requirements, in order to establish, modify or maintain data structures and their associated components (entity descriptions, relationship descriptions, attribute definitions).

Security Administration
  • Monitors the application and compliance of security administration procedures and reviews information systems for actual or potential breaches in security.
  • Ensures that all identified breaches in security are promptly and thoroughly investigated and that any system changes required to maintain security are implemented.
  • Ensures that security records are accurate and complete and that request for support are dealt with according to set standards and procedures.
  • Contributes to the creation and maintenance of policy, standards, procedures and documentation for security.

Incident Management
  • Prioritises and diagnoses incidents according to agreed procedures.
  • Investigates causes of incidents and seeks resolution.
  • Escalates unresolved incidents.
  • Facilitates recovery, following resolution of incidents.
  • Documents and closes resolved incidents according to agreed procedures.

Technical Specialism
  • Provides organisational leadership and guidelines to promote the development and exploitation of specialist knowledge in the organisation.

Relationship Management
  • Identifies the communications needs of each stakeholder group in conjunction with business owners and subject matter experts.
  • Translates communications / stakeholder engagement strategies into specific tasks.
  • Facilitates open communication and discussion between stakeholders, acting as a single point of contact by developing, maintaining and working to stakeholder engagement strategies and plans.
  • Negotiates with stakeholders at senior levels, ensuring that organisational policy and strategies are adhered to.
  • Provides informed feedback to assess and promote understanding.

Desirable Criteria
  • CISSP Certification.
  • Programming in Python or similar languages.



About BP:

We are a global energy business involved in every aspect of the energy system. We have 75,000 employees in 80 countries, working towards delivering light, heat and mobility to millions of people, every day. We are one of the very few companies equipped to solve some of the big complex challenges that matter for the future. We have a real contribution to make to the world's ambition of a low carbon future. Join us, and be part of what we can accomplish together.

JOB SEARCH

Keywords / job title / skill / company

Type any location in the box above, or select below :
Africa
Asia & Pacific
CIS
Europe
Middle East
North America
South America
Afghanistan
Åland Islands
Albania
Algeria
American Samoa
Andorra
Angola
Anguilla
Antarctica
Antigua and Barbuda
Argentina
Armenia
Aruba
Australia
Austria
Azerbaijan
Bahamas, The
Bahrain
Bangladesh
Barbados
Belarus
Belgium
Belize
Benin
Bermuda
Bhutan
Bolivia
Bonaire, Sint Eustatius and Saba
Bosnia and Herzegovina
Botswana
Bouvet Island
Brazil
British Indian Ocean Territory
British Virgin Islands
Brunei
Bulgaria
Burkina Faso
Burundi
Cambodia
Cameroon
Canada
Cape Verde
Cayman Islands
Central African Republic
Chad
Chile
China
Christmas Island
Cocos (Keeling) Islands
Colombia
Comoros
Congo, Democratic Republic of the
Congo, Republic of the
Cook Islands
Costa Rica
Cote d'Ivoire
Croatia
Curaçao
Cyprus
Czech Republic
Denmark
Djibouti
Dominica
Dominican Republic
East Timor
Ecuador
Egypt
El Salvador
Equatorial Guinea
Eritrea
Estonia
Ethiopia
Falkland Islands (Islas Malvinas)
Faroe Islands
Fiji
Finland
France
French Guiana
French Polynesia
French Southern and Antarctic Lands
Gabon
Gambia, The
Georgia
Germany
Ghana
Gibraltar
Greece
Greenland
Grenada
Guadeloupe
Guam
Guatemala
Guernsey
Guinea
Guinea-Bissau
Guyana
Haiti
Heard Island and McDonald Islands
Holy See (Vatican City)
Honduras
Hong Kong
Hungary
Iceland
India
Indonesia
Iraq
Ireland
Isle of Man
Israel
Italy
Jamaica
Japan
Jersey
Jordan
Kazakhstan
Kenya
Kiribati
Korea, South
Kosovo
Kuwait
Kyrgyzstan
Laos
Latvia
Lebanon
Lesotho
Liberia
Libyan Arab
Liechtenstein
Lithuania
Luxembourg
Macau
Madagascar
Malawi
Malaysia
Maldives
Mali
Malta
Marshall Islands
Martinique
Mauritania
Mauritius
Mayotte
Mexico
Micronesia, Federated States of
Moldova, Republic of
Monaco
Mongolia
Montenegro
Montserrat
Morocco
Mozambique
Myanmar
Namibia
Nauru
Nepal
Netherlands
Netherlands Antilles
New Caledonia
New Zealand
Nicaragua
Niger
Nigeria
Niue
Norfolk Island
Northern Mariana Islands
Norway
Oman
Pakistan
Palau
Palestinian territories
Panama
Papua New Guinea
Paraguay
Peru
Philippines
Pitcairn Islands
Poland
Portugal
Puerto Rico
Qatar
Reunion
Romania
Russia
Rwanda
Saint Barthélemy
Saint Helena
Saint Kitts and Nevis
Saint Lucia
Saint Martin
Saint Pierre and Miquelon
Saint Vincent and the Grenadines
Samoa
San Marino
Sao Tome and Principe
Saudi Arabia
Senegal
Serbia
Seychelles
Sierra Leone
Singapore
Sint Maarten
Slovakia
Slovenia
Solomon Islands
Somalia
South Africa
South Georgia and the Islands
South Sudan
Spain
Sri Lanka
Suriname
Svalbard
Swaziland
Sweden
Switzerland
Taiwan
Tajikistan
Tanzania, United Republic of
Thailand
The Former Yugoslav Republic of Macedonia
Togo
Tokelau
Tonga
Trinidad and Tobago
Tunisia
Turkey
Turkmenistan
Turks and Caicos Islands
Tuvalu
Uganda
United Arab Emirates
United Kingdom
United States
United States Minor Outlying Islands
Uruguay
Uzbekistan
Vanuatu
Venezuela
Vietnam
Virgin Islands (US)
Wallis and Futuna
Western Sahara
Yemen
Zambia
Zimbabwe

Country, town, city or postcode

--Web3New--