Operational Security Management Specialist

Entity:

Technology

Job Family Group:

IT&S Group

Job Description:

BP are looking for a Security Operations Specialist to join us in our Sunbury offices and work within our Automation Systems Security Operations Team, providing security services to Operational Technology environments around the globe.

In this customer facing support role you’ll be responsible for monitoring and managing Firewalls and other security technologies within the specialism. Using established technical capabilities, you will implement change, troubleshoot and support the delivery of new solutions and initiatives.

The Specialist will follow and improve established process/procedure and contribute to the creation of new. Assisting in the remediation of security incidents, liaising with internal and external stakeholders, and supporting the remediation of security vulnerabilities forms part of the role.

This position will be working on a Monday to Friday day’s only shift pattern, working one month of weekends every 3rd or 4th Month, whilst maintaining a 5-day working week. This opportunity is 60/40 hybrid working at our Sunbury offices.

Key Accountabilities:

• Manage Firewall change requests via a cmdb, ensuring the change lifecycle process is followed.
• Troubleshoot and resolve firewall-related issues, diagnosing problems and implementing solutions to maintain network security and functionality.
• Configure, administer, and troubleshoot Firewalls, Endpoint Protection/Antivirus solutions, Vendor Windows OS patching, Security Monitoring, and Multi-Factor Authentication (MFA)
• Monitor security systems, including Firewalls, Windows AD event logs, syslog, anti-virus, file integrity, and vulnerability scanners for security events.
• Evaluate and investigate detected security events to see if they represent significant security incidents and require some level of response.
• Support the implementation and enforcement of relevant security processes and procedures, ensuring full compliance with established standards.
• Actively pursue continuous improvement initiatives, in alignment with BP's commitment to optimizing workflows and system performance.
• Suggest and work with the respective security team members to develop and refine additional monitoring content, processes and procedures.
• Develop and maintain knowledge of the functionality and technology of existing IT systems as well as:
  • Industrial Control Systems (ICS) technologies
  • General view of the current state of security threats across the ICS environments as well as within a large multi-national corporation.
• Provide Operational support on a rotating shift schedule (including periodic weekend shifts)

Essential Criteria:

• 2+ years of experience in Firewall management
• 2+ years of experience in Layer 2 and Layer 3 networking
• Experience with network interfaces and routing protocol configuration
• Experience with Virtual Private Networks (IPSec)
• Experience or knowledge with remote access VPN, multifactor authentication, and Firewall user authentication
• Experience or working knowledge with Network Address Translation
• Experience with Firewall central management systems and Firewall Firmware upgrades
• Experience with FortiGate firewalls is strongly preferred, with familiarity in configuration, central management, and troubleshooting.
• Experience of working with Firewall audit
• Desire and ability to learn, understand and apply new technologies.
• Experience with Firewall log/event configuration and SIEM
• Ability to work independently and as part of a team, to multitask, and prioritize tasks, and to take initiative in a fast-paced environment.
• Willingness to coach and mentor other team members.
• Good written and verbal communication skills, with the ability to effectively articulate technical concepts to both technical and non-technical audiences.
• Military experience encouraged to apply

Desirable Criteria:

• Fortinet NSE / CCNA / CISSP certifications is highly desirable
• Servicenow experience
• Experience working within an Operational Technology & Industrial Control System environment
• Experience with TCP/IP protocol suite, security architecture, and remote access security techniques and products.
• Coding/scripting skills
• Vulnerability assessment experience is desired.
• Anti-malware solution experience
• Digital certificate management experience
• SANS GIAC training and/or certification.
• Understanding of Operational Technology Systems and environments.
• Knowledge of Network Intrusion Detection Systems
• Proficient in the operation and protection of Microsoft Windows and Linux operating systems.
• Awareness of the threat environment faced by multi-national Integrated Energy Company (Oil, Gas, Electricity, Bio-fuels)

Why join our team?

At bp, we provide an excellent working environment and employee benefits such as an open and inclusive culture, a great work-life balance, tremendous learning and development opportunities to craft your career path, life and health insurance, medical care package and many others.

We support our people to learn and grow in a diverse and challenging environment. We believe that our team is strengthened by diversity. We are committed to crafting an inclusive environment in which everyone is respected and treated fairly.

There are many aspects of our employees’ lives that are meaningful, so we offer benefits to enable your work to fit with your life. These benefits can include flexible working options, collaboration spaces in a modern office environment, and many others benefits.

Reinvent your career as you help our business meet the challenges of the future.

Apply now!

Travel Requirement

No travel is expected with this role

Relocation Assistance:

This role is not eligible for relocation

Remote Type:

This position is a hybrid of office/remote working

Skills:

Automation system digital security, Client Counseling, Conformance review, Digital Forensics, Incident management, incident investigation and response, Information Assurance, Information Security, Information security behaviour change, Intrusion detection and analysis, Legal and regulatory environment and compliance, Risk Management, Secure development, Security administration, Security architecture, Security evaluation and functionality testing, Solution Architecture, Stakeholder Management, Supplier security management, Technical specialism

Legal Disclaimer:

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us.

If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.