Entity:

Technology

Job Family Group:

IT&S Group

Job Description:

Our purpose is to bring together people, energy and markets to power and navigate a changing world. In a time of constant change and possibility we need new talent to pursue commercial opportunities, fuelled by world-class insight and expertise. We’re always striving for more innovative digital solutions, sustainable outcomes and closer collaboration across our company and beyond, and you could be part of that too.

About the Role:

As an Information Security Engineering Specialist at BP PLC, you will play a critical role in safeguarding our digital assets and ensuring the resilience of our information systems. You will contribute to a secure environment by applying your expertise in incident response, risk management, and security guidelines.

Key Accountabilities:

Vulnerability & Exposure Management

• Leading efforts to identify, prioritise, and track vulnerabilities across cloud and on‑prem environments

• Advising system owners, developers, and platform teams on remediation and configuration hardening and risk reduction

• Providing hands‑on support to reduce risk and improve security outcomes

Security Advisory & Support

• Assisting technology teams in resolving exposure issues related to identity, network security, posture management, and secure configurations

• Acting as a security advocate, delivering clear written and verbal communication to technical and non‑technical stakeholders

• Creating and delivering training, awareness materials, and briefings to enhance security maturity

• Offering excellent customer service by supporting various business units through best‑practice guidance and responsive problem‑solving

Incident Response & Assurance

• Leading and participating in incident investigations to identify root causes and implement effective solutions

• Providing expert consulting on secure design, implementation, and operations

• Contributing to the development and continuous improvement of information assurance frameworks and policies

Platform Ownership

• Serving as a key contact for our vulnerability management platform supporting users in effective adoption and day‑to‑day usage

• Ensuring the platform is well‑configured, reliable, and used effectively across the organisation

• Championing new features and capabilities to continuously improve vulnerability visibility, prioritisation, and remediation outcomes.

Essential Experience and Job Requirements:

• Proven experience in information security, especially in vulnerability or exposure remediation

• Hands‑on experience with incident management, SIEM tools, and incident response platforms

• Experience working with vulnerability management or cloud-native security tools (e.g., Qualys, Wiz, Microsoft Defender for Cloud)

• Solid understanding of information assurance frameworks and compliance (ISO 27001, NIST, etc.)

• Knowledge of risk management principles, including assessment and mitigation

• Exceptional communication skills with the ability to translate complex topics into business‑friendly language

• Customer service experience—showing empathy, active listening, and a solutions‑focused approach when supporting partners

• Strong analytical and problem‑solving skills, especially during incident investigations

• Effective stakeholder management and relationship‑building abilities

• Cloud certifications (AWS, Azure) or security certifications (CISSP, CISM, GCIH, CCSP) are highly desirable

• A degree in Computer Science, IT, Cybersecurity, or equivalent practical experience

Why join us?

At bp, we provide an excellent working environment and employee benefits such as an open and inclusive culture, a great work-life balance, tremendous learning and development opportunities to craft your career path, life and health insurance, medical care package and many others.

We support our people to learn and grow in a diverse and exciting environment. We believe that our team is strengthened by diversity. We are committed to crafting an inclusive environment in which everyone is respected and treated fairly.

There are many aspects of our employees’ lives that are significant, so we offer benefits to enable your work to fit with your life. These benefits can include flexible working options, collaboration spaces in a modern office environment, and others benefits.

Reinvent your career as you help our business meet the challenges of the future. Apply now!

Travel Requirement

Negligible travel should be expected with this role

Relocation Assistance:

This role is not eligible for relocation

Remote Type:

This position is a hybrid of office/remote working

Skills:

Consulting, incident investigation and response, Incident Management, Information Assurance, Information Security, Information security behaviour change, Risk Management, Stakeholder Management, Supplier security management

Legal Disclaimer:

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us.

If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.