The Industrial Control Systems (ICS) Security Specialist is a leader within our global Process Control Network (PCN) centralized security service. The service currently uses Juniper Network Security Manager (NSM), Microsoft Windows Server Upgrade Service (WSUS), McAfee ePO and PulseSecureâ€™s Unified Access Control (UAC) systems. The specialist will develop detailed operational process and procedures, train junior staff, and identify or develop automated processes to simplify the service which will provide more time for the team to appropriately analyse, call out, and assist in remediation of critical information security incidents.
You will be responsible for running security systems, including the Firewalls, Windows AD event logs, syslog, anti-virus, file integrity, and vulnerability scanners for security events.
Evaluate and investigate detected security events to determine if they represent significant security incident and require some level of response. This response will be in the form of detailed configuration data, traffic analysis and/or event correlation. All incident responses will support the Global BP Digital Security incident management process.
Suggest and work with the respective security team members to develop and refine additional monitoring content.
Develop detailed operational procedures for services and identify/develop automated programs to produce daily reporting, data gathering and simple operational processes. This will allow the team increased time to appropriately analyse, call out, and assist in remediation of critical information security incidents.
Maintain knowledge of the functionality and technology of existing IT systems as well as:ICS technologies
General view of the current state of security threats across the ICS environments as well as within a large multi-national corporation.
Be a leader for the Process Control Network ServiceDevelop, maintain, and build new relationships within the Automated Systems community within BP Globally.
Interact within the Global BP IT Organization to understand their role and how our services will interact.
Act as the lead subject matter expert when challenging issues are debated.
Develop new security processes and procedures to improve the serviceâ€™s detection and response capability
Recognized expert working with one or more of the following:Firewall Management
2 factor Authentication
Creating scripts for automating processes
Identify project opportunities to develop services outside the current capabilities of the team
Provide expertise, guidance and best practice advice to diagnose, investigate and overcome problems within the PCN Security Operations (SecOps) Team as well as within Digital Security
Develop project plans for the deployment of infrastructure upgrades. Lead the execution of the project which could be as small as updating a portion of the infrastructure or as large as the global deployment of any upgrades, patches and/or actual hardware replacement. Frequently these projects span multiple years and become integrated with multiple other projects increasing the overall complexity.
Provide recommendations to Global project teams on infrastructure requirements to achieve service objectives. Frequent meetings with project teams at the initiation of the project will include the development of requirements, objectives and definition of completion. Part of this consultation with the project team is to ensure that they are in conformance with current BP Policies and Guidelines and provide them direction if they are not.
Develop and maintain positive working relationships with the Single Point of Accountability (SPA) for all global sites as well as their associated support organization.
Monitor, coordinate, coach, mentor and train the PCN SecOps Team. Act as their escalation point for all services.
Lead the PCN SecOps Team in the resolution of complex issues and problems that are unstructured and often cross multiple Global service lines within BP.Most issues and problems involve working within a framework of policies.
Must be able to operate within broad guidelines, policies and standards and can identify, document and support changes to established procedures
Degree level or equivalent
Essential experience and job requirements
Knowledge of Automation System environments.
Extensive experience within IT infrastructure management
Hands on experience of Cyber Security or related discipline
Subject matter authority in the operation of computer operating systems such as Windows (XP, 7, 2003, 2008, 2012) or Linux/UNIX.
Deep technical understanding of IT infrastructure and management of these components.
Experience in analysing incidents in a large enterprise environment.
Awareness of the threat environment faced by multi-national oil, gas, Petrochemical Corporation.
Willingness to acquire in-depth knowledge of network and host security technologies and products (such as firewalls, Network IDS and, scanners) and to continuously improve these skills.
Be a self-starter that can multi-task and work within a team.
Willingness to train and mentor other team members.
Good written and oral communication skills.
Other Requirements (e.g. Travel, Location)
There are no additional requirements. Please respond with N/A below.
Desirable criteria & qualifications
Experience with ICS, Process Control Networks and SCADA is highly desirable.
Advanced experience with TCP/IP protocol suite, security architecture, and remote access security techniques and products desired.
SANS Global Industrial Cyber Security Professional or have completed the ICS/CERT ICS Training is desired but not required.
BS Computer Science or Engineering is preferred but not required.
Is this a part time position?
We are a global energy business involved in every aspect of the energy system. We have 75,000 employees in 80 countries, working towards delivering light, heat and mobility to millions of people, every day. We are one of the very few companies equipped to solve some of the big complex challenges that matter for the future. We have a real contribution to make to the world's ambition of a low carbon future. Join us, and be part of what we can accomplish together.
BP is one of the three largest energy companies in the world, operating in over 100 countries across 6 continents. Information Technology & Services (IT&S), provides a full range of IT services to BP's global business segments.
IT&S plays a critical role in the delivery of defined world-class operational services that BP businesses can rely upon in support of their own performance. Our specific accountabilities include the delivery of services to specified target levels, including availability, recoverability and cost to the corporation. These services must also be delivered safely and secured against the growing risk of viruses and other security threats.
We aim to benchmark our performance favorably against a defined peer group of the world's best and intend to deliver our services with professionalism to rival any major business corporation in the world - this is what we mean by being 'World Class'. To achieve this exciting level of performance will require a commensurate level of enthusiasm, commitment and expertise in our people.
Corporate & Functions