1. Home
  2. Careers
  3. Jobs at bp
  4. Defense Analytics and Integration Specialist

Defense Analytics and Integration Specialist

Defense Analytics and Integration Specialist

  • Location United States - Texas - Houston
  • Travel required No
  • Job category IT&S Group
  • Relocation available No
  • Job type Professionals
  • Job code 126441BR
  • Experience level Intermediate
Apply Search all jobs at bp

Job summary

Job Profile Summary
We are looking for a cybersecurity engineer to join our team with a strong focus on security tooling, integration, automation, and data analytics to support detection and response. The Defense Analytics and Integration team provides expertise in security log collection & integration, automation of processes, development and continuous innovation of tooling, system integration and analytics of data in support of detection and response to better respond to and prevent threats in an ever-changing environment. We expect you to have experience in security technologies such as SIEM as well as coding ability for automation and integration work.

Job Advert
Key Accountabilities

  • Maintain knowledge and understanding of our security technologies, helping in the delivery of process and system improvements, driving implementation of continuous improvement plans and adhering to best practices.
  • Continuously review and implement additional automation and integration into our systems.
  • Support the wider teams in improving data accuracy by implementing controls, automation, and reporting in our tooling and metrics.
  • Continuous identification and improvement of unused capability in our current systems to maximize value.
  • Provided technical expertise in support of information security tooling and automation.
  • Design, develop, implement, and support our security solutions across multiple security services and products in both on-premises and cloud environments.
  • Work with the wider team to continuously improve and tune our content and tooling to better detect and respond to malicious activity.
  • Compile and analyze security data for reporting and metrics.
  • Gather additional data sources and feeds for better visibility in support of detection and response.
  • Use data analytics and visualizations to view and interact with data in new ways.
  • Develop and maintain a roadmap for security technologies and processes.
  • Support a collaborative team environment utilizing agile development methodologies and principles.

Technical Competencies / Experience

  • Knowledge of security technologies including SIEM, UEBA, SOAR, IDS/IPS, EDR as well as knowledge of network technologies, databases, web applications, cloud-based services and infrastructure, and identity management platforms.
  • Ability to code in one or more scripting / programming languages such as: Python, PowerShell, JavaScript, Perl, Ruby, VB, C#.
  • API Integrations and XML/JSON formatting.
  • Prior experience with one or more databases and database query languages.
  • Understanding/prior experience with Azure (AAD, app registrations, custom APIs, functions, workspaces, log analytics, Sentinel, serverless infrastructure, KQL, Azure DevOPS pipelines, logic apps, etc.) and AWS (S3 buckets, GuardDuty, Lambda, CloudFront, CloudWatch, CloudTrail, etc.)
  • Knowledge of working in different operating systems including Windows, Linux and MacOS.
Desired Education / Training
  • College degree or technical certification (SANS, Cyber Security). Working experience may also substitute for a degree.
    SANS Certification: One or more of: GCIA, GCIH, GCFE, GCFA

Job Profile Summary
We are looking for a cybersecurity engineer to join our team with a strong focus on security tooling, integration, automation, and data analytics to support detection and response. The Defense Analytics and Integration team provides expertise in security log collection & integration, automation of processes, development and continuous innovation of tooling, system integration and analytics of data in support of detection and response to better respond to and prevent threats in an ever-changing environment. We expect you to have experience in security technologies such as SIEM as well as coding ability for automation and integration work.

Job Advert
Key Accountabilities

  • Maintain knowledge and understanding of our security technologies, helping in the delivery of process and system improvements, driving implementation of continuous improvement plans and adhering to best practices.
  • Continuously review and implement additional automation and integration into our systems.
  • Support the wider teams in improving data accuracy by implementing controls, automation, and reporting in our tooling and metrics.
  • Continuous identification and improvement of unused capability in our current systems to maximize value.
  • Provided technical expertise in support of information security tooling and automation.
  • Design, develop, implement, and support our security solutions across multiple security services and products in both on-premises and cloud environments.
  • Work with the wider team to continuously improve and tune our content and tooling to better detect and respond to malicious activity.
  • Compile and analyze security data for reporting and metrics.
  • Gather additional data sources and feeds for better visibility in support of detection and response.
  • Use data analytics and visualizations to view and interact with data in new ways.
  • Develop and maintain a roadmap for security technologies and processes.
  • Support a collaborative team environment utilizing agile development methodologies and principles.

Apply Search all jobs at bp