Site traffic information and cookies

We use cookies to collect and analyse information on our site's performance and to enable the site to function. Cookies also allow us and our partners to show you relevant ads when you visit our site and other 3rd party websites, including social networks.You can choose to allow all cookies by clicking ‘Allow all’or manage them individually by clicking ‘Manage cookie preferences,’ where you will also find more information.

Manage cookie preferences

  1. Home
  2. Careers
  3. Jobs at bp
  4. Information Security Engineering Specialist

Information Security Engineering Specialist

Information Security Engineering Specialist

  • Location India - Maharashtra - Pune
  • Travel required No
  • Job category IT&S Group
  • Relocation available Yes - Domestic (In country) only
  • Job type Professionals
  • Job code 135119BR
  • Experience level Intermediate
Apply Search all jobs at bp

Job summary

Grade HResponsible for supporting information security and risk activities for the specialism, using sound technical capabilities to review and adjust information security processes, supporting the delivery of security solutions, recommending improvements to security strategies and managing external service providers, as required. Specialisms: Information Security Engineering; Information Security and Risk Management; Operational Security Management; Governance, Risk and Compliance; Forensics and Incident Response Management; Application Information Security.

Role Synopsis:

The Compliance and Segregation of Duties (SoD) Product Owner will be responsible for providing leading-edge solutions that help protect bp’s applications from unauthorized access whilst adhering to strict compliance standards and audit requirements.

The primary activities that are required for this role are as follows:

  • Design, Develop, Implement and manage solutions for SOD monitoring that measure simulated SoD’s as well as actual SoD’s.
  • Enhance the integration of SOD solutions with bp’s Identity & Governance solutions
  • Review and design SOD violation rulesets across SAP and non-SAP environments
  • Ensure security baseline controls design is in accordance with global best practices within the project constraints for SOD.
  • Define and ensure business teams and technical teams understand the end-to-end process around segregation of duties and the compliance requirements and controls that form around this area.
  • Design and management of technical mitigations and remediation where necessary.
  • Coordinate with internal & external audit team to ensure all relevant information is provided, and any audit deficiencies are managed in line with bps policies.
  • Work with control teams to define and design relevant risks that need to be managed
  • Ensure guidance is provided to operational teams around operating bp’s compliance solutions in the most optimum way.
  • Ensure relevant communications and knowledge sharing across compliance and SOD activities is conducted in a timely manner across the key communities at bp.
Desirable Education : Bachelor’s Degree or equivalent

Desirable Experience and Capability :

Years of experience: 8 to 12 years, with a minimum of 5 to 7 years of relevant experience operating within entitlement-based access management.

Required Criteria / Skills
  • Experience in managing SOD’s and Violation risks across multiple applications.
  • Good working knowledge of Agile and Waterfall delivery methodologies having worked to deliver across both methods.
  • Competent in working across complex Identify & Access Management processes and designs.
  • Deep identity and compliance knowledge across a multitude of business applications.
  • Knowledge of Identity Governance and Assurance solutions e.g. SAP GRC, SAP AVM SNOW IRM, Saviynt, etc
  • Experience in working with compliance and audit controls including SOX.
  • Experience in medium/large-scale project implementation cycles
  • Team player who is willing to speak up and share what they have learned and embrace bp’s core values and behaviours.
  • Excellent verbal and written communication skills.
  • Positive interpersonal skills, including the ability to establish and maintain good working relationships with others.
  • Strong in documentation, process analysis, and design, requirement gathering and impact analysis
Preferred Criteria / Skills
  • Appreciation/understanding of Cloud Technologies and the broader identity and access management area
  • Experience in providing operational application support
  • Performance Management, Supplier Management
  • Excellent communication skills

Compliance and Segregation of Duty Product Owner

Apply Search all jobs at bp