BP Americas, Inc. Security Architect in Denver, Colorado

82231BR

Job title:

Security Architect

Segment:

Upstream

Role synopsis:

The role of the Security Architect is the subject matter expert and leader of the security guidance capability for L48 IT&S, including responsibility for overall security strategy, architecture development and functional oversight.

The role reduces risk and contributes to overall performance by developing sound architecture principles and fostering best practices and pragmatic approaches to security across L48's business & IT including partner vendors and managed service providers.

This person must also be comfortable operating as an individual contributor and using influence and expertise to aid the transformation of an organization and enable a cutting edge “work on demand” environment.

L48’s cyber security operations are outsourced to a MSSP partner and this role will require the ability to manage/lead in the this type of environment.

Req ID:

82231BR

Location:

United States - Colorado - Denver

Is this a part time position?:

No

Relocation available:

No

Travel required:

Yes - up to 25%

Key accountabilities:

  • Develops and maintains comprehensive L48 security policy, standards, guidelines and procedures to ensure ongoing maintenance of security within the legal frameworks required by L48.

  • Provides security thought leadership and communicate the architecture vision across the business.

  • Develops pragmatic roadmaps to deliver the policy in conjunction with key stakeholders.

  • Create strong credible relationships through liaison with business stakeholders and technical experts.

  • Provides advice and guidance to management and project teams; review designs to ensure security controls are implemented.

  • Develops and implements security tracking and frameworks to demonstrate progress on the security agenda.

  • Provides security architecture and advice in support of solution development, infrastructure, and enterprise technology projects to ensure the integrity of L48’s systems and data.

  • Defines, documents and implements the security solution architecture including but not limited to the following:

  • Authentication & authorization (what authorization model is required)

  • Account administration controls (provisioning, segregation of duties, validation, attestation.)

  • Auditing of critical security related events

  • Confidentiality, Integrity, and Availability of the system and data.

  • Assess project requirements related to application security, including correlation with L48 and/or BP Group security policy and standards.

  • Identify architectural and other security risks associated with the solution, and compensating controls where necessary.

  • Identifies any gaps in any existing solutions, work with the IT&S LT to identify and roadmap solutions.

  • Enhances security & IT team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members.

  • Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates.

  • Plans security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards.

  • Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation.

  • Verifies security systems by developing and implementing test scripts.

  • Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs.

  • Coordinates upgrades to systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements.

  • Prepares system security reports by collecting, analyzing, and summarizing data and trends.

  • Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.

  • Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments.

  • Ability to create content suitable for the executive team

  • Ability to inspire change across the business and create a sense of responsibility around cyber policies

Essential Education:

  • Minimum requirement of four-year college degree in Management Information Systems or related discipline

  • CISM, GIAC, CISSP with 6-8 years of progressive IT experience

Desirable criteria and qualifications:

  • Supervision, management or leadership position experience desirable.

  • Desire to continually learn outside of a classroom environment, and successfully apply learnings

  • Demonstrated willingness to both teach others and learn new techniques

Leadership

  • Generates enthusiasm among team members.

  • Proactively seeks opportunities to serve in leadership roles.

  • Challenges others to develop as leaders while serving as a role model.

  • Manages the process of innovative change.

  • Collaborates with and influences others not in direct line

Teamwork

  • Facilitates effective team interaction.

  • Acknowledges and appreciates each team member's contributions.

  • Works effectively with distributed team members

About BP:

BP's US Lower 48 (L48) Onshore business operates across a vast US geography, from Texas north through the Rocky Mountains. The business manages a diverse portfolio which includes an extensive unconventional resource base of about 7.5 billion barrels of oil equivalent across 5.5 million gross acres in some of the largest and most well-known basins in the US. Headquartered in Houston (Texas), L48 employs about 1,700 people across six states, operates more than 9,600 producing wells and has 70,000 royalty owners. Our vision is to be the most respected and admired oil and gas company in the Lower 48 US states.

Our Wyoming operations are anchored on the giant Wamsutter tight gas field in the south central part of the state. In the San Juan area of Colorado and New Mexico we produce from tight gas sands and operate the largest coal-bed methane field in the US. Our Mid-Continent operations cover the prolific Anadarko, and is home to the famed East Texas basin, along with the Woodford shale gas play and Arkoma basin. We also have non-operating interests in over 10,000 wells across the US with substantial positions in both the Eagle Ford and Fayetteville shale basins.

In 2015, the L48 Onshore is being established as a separate business within BP’s Upstream to manage its onshore oil and gas assets across the US onshore. This effort is being undertaken to improve competitiveness and help L48 remain at the forefront of innovation and development of technologies for unconventional resources.

*LI-NOWRAP

Application close date:

29-Jun-2017

Sub-category:

Architecture & Design

Job category:

Information Technology & Services

Countries (State/Region):

United States - Colorado

Disclaimer:

If you are selected for a position in the United States, your employment will be contingent upon submission to and successful completion of a post-offer/pre-placement drug test (and alcohol screening/medical examination if required by the role) as well as pre-placement verification of the information and qualifications provided during the selection process. The drug screen requires a hair test for which BP must be able to obtain a sufficient hair sample for analysis (4 cm/1 ½” scalp, or > 2 cm/¾” body – arms & armpits/legs/chest).

BP is an equal employment opportunity and affirmative action employer. View our policy statement .

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.

If you are a US-based applicant or you are applying to a position in the US and you are an individual with disability or a disabled veteran, and would like any type of assistance to apply or to access or to attend any recruitment or selection event, system or process, we would like to help you to ensure that your application process goes as smoothly as possible. If you need assistance, information, or answers to your questions, and you are an individual with disability or a disabled veteran, feel free to contact us or have any of your representatives contact us at BP US Application Assistance BPUSApplicationAssis@bp.com ,Telephone: 281.366.1999.

Read the Equal Employment Opportunity is the Law poster and the poster supplement - for more information about Equal Employment Opportunities. ( Spanish version )

An equal opportunity employer/disability/vet.

Essential experience and job requirements:

  • 5-10+ years of relevant work experience in IT with minimum of 6-8 years in security discipline

  • Network Security, Network Hardware Configuration, Network Protocols, Networking Standards,

  • Conceptual Skills,

  • Decision Making,

  • Informing Others,

  • Functional and Technical Skills,

  • Information Security Policies

  • Practical experience in the Information Security Architecture field, with emphasis on solution architecture and authorization approaches (role-based access control, direct entitlements-based).

  • Strong understanding of security architecture best practices, standards and frameworks.

  • Any formal training in the fields of networking, anti-attack solutions: Antivirus/antimalware, honeypot implementations, cyber incident management or detection;

  • Proven experience implementing and supporting security solutions e.g. Firewall, IDS, ATP, DLP

  • Strong communication (written/verbal) and collaboration skills

  • Consulting, negotiation and relationship skills

  • Problem solving skills

  • Experience working in geographically dispersed organizations and decentralized Security Model.

  • Experience working in a hybrid environment with multiple datacenters, multiple public cloud and SaaS providers.

  • A highly-motivated self-starter

  • Must be an intelligent, articulate and persuasive leader who can serve as an effective member of the IT team, who can communicate security concepts to technical nontechnical colleague.

  • Must be able to maintain focus on achieving results, whilst being patient and pragmatic

Other Requirements (eg Travel, Location):


bp.com #tag:

#lower48req

Eligibility Requirements:

If you are applying for a position in the United States, you must be at least 18 years of age, legally authorized to work in the United States; and not require sponsorship for employment visa status (e.g., TN, H1B status), now or in the future.