1. Home
  2. Careers
  3. Jobs at bp
  4. Information Security Specialist

Information Security Specialist

Information Security Specialist

  • Location India - Maharashtra - Pune
  • Travel required No
  • Job category IT&S Group
  • Relocation available Yes - Domestic (In country) only
  • Job type Professionals
  • Job code 137645BR
  • Experience level Intermediate
Apply Search all jobs at bp

Job summary

The Digital Security Engagement team sees possibilities everywhere to create seamless security experiences that enable the right controls and behaviors to be built directly into every business opportunity:

We define opportunities to improve the effectiveness and efficiency of the Digital Security engagement model

We are highly responsive and flexible to customers and business needs

We align to bp’s strategic direction, driving change and enabling innovation

We deliver a security operating model that achieves a balance between the protection of digital assets and the support of bp’s digital transformation

We deliver an Agile Community of Practice across Digital Security to improve the delivery of change

We are looking for Security professionals that are passionate about Cyber security and want to further enhance bp’s security posture by removing vulnerabilities and putting necessary controls in place

The primary activities that are required of you in this role are:
Reviewing complex bp business processes and requirements with a security assurance mindset
Influence and manage the remediation of security Findings that have been identified through penetration testing and security assessments of applications/infrastructure and supplier assurance engagements.
Expected to adhere to defined process workflows to support remediation, tracking, and reporting.
Co-ordinate and manage internal teams/3rd parties to ensure that the identified findings are closed or if accepted then raised as a digital risk.
Ensure that recommendations are identified against findings and amend policy if required.
Having an innovative mindset and constantly looking to share your visions and ideas with the team
Exploring and supporting continuous improvement to ensure solutions bring value to bp
Key Accountabilities :

  • Reviewing vulnerability assessments,
  • Running security scans across assets and assessing the outcome/recommendations
  • Working with Digital Security teams to identify vulnerabilities
  • Managing activities to remediate vulnerabilities, scoping the work
  • Working with vendors and service owners to drive forward remediation
  • Using ADO (Azure DevOps) to ensure work is visible and reported
  • Evaluating remediation work and following up on risk management for any residual risk


You are a security professional who cares passionately about protecting information systems and enjoys roles that regularly present new challenges and learning opportunities. You work well in collaborative teams and can take direction and adapt quickly to changes in focus and prioritization. You are excited about bp’s new strategy and purpose and how the digital transformation can help deliver it.
Desirable Education
Bachelor’s degree in Computer Science, Cyber Security or related field
Security certifications such as CISSP, Security+, CRISC and direct experience acceptable in lieu of degree

Desirable Experience and Capability

Minimum 4 years of cyber security experience
Energy Sector experience
Experience and understanding of security tools: Cycognito, Qualys, Expanse, Synack
Understanding of NIST Framework and ISO27001
Understand Agile and have an agile mindset. Have used Agile tools such as ADO
Understanding of Vulnerability Management methods
Understanding of Governance Risk and Compliance frameworks and application
Experience with bp’s digital security organization and processes is a plus

Desirable Behaviors

Builds and develops relationships across the bp Group, within the I&E (Innovation & Engineering) digital organization, and with suppliers and software vendors – delivering best in class security knowledge to all stakeholders
Consistently adheres to bp standards and compliance requirements to ensure all bp data and IT (Information Technology) applications are protected to the highest level
Empathetic: Cares about our people, our community, and our planet
Curious: Seeks to explore, think, and do
Creative: Imagines the extraordinary
Inclusive: Brings out the best in each other
Effective communication skills (verbal and written)
Good analytical skills Proactive thinking – the ability to produce options and solutions
Good attention to detail
Delivery focused, willing to challenge and be challenged
Motivating, positive, energetic, helpful and Lead by example
Demonstrates strong customer empathy

The Digital Security Engagement team sees possibilities everywhere to create seamless security experiences that enable the right controls and behaviors to be built directly into every business opportunity:

We define opportunities to improve the effectiveness and efficiency of the Digital Security engagement model

We are highly responsive and flexible to customers and business needs

We align to bp’s strategic direction, driving change and enabling innovation

We deliver a security operating model that achieves a balance between the protection of digital assets and the support of bp’s digital transformation

We deliver an Agile Community of Practice across Digital Security to improve the delivery of change

We are looking for Security professionals that are passionate about Cyber security and want to further enhance bp’s security posture by removing vulnerabilities and putting necessary controls in place

Apply Search all jobs at bp