Principal Architect, Counter Threat & Intelligence

---

Job description

Job Profile SummaryAbout BP-"Are you looking for a career in tech that truly helps make the world a better place? Bp is moving through the biggest transition in its 100+ year history with the goal of becoming one of the world's largest renewable energy providers and achieving net zero carbon emissions by 2050. At bp, we provide great environment & benefits such as an inclusive culture, a great work-life balance, learning and development opportunities, life & health insurance, medical care package, and many others benefits!We support our people to learn and grow in a diverse and challenging environment. We believe that our team is strengthened by diversity. We are committed to crafting an inclusive environment in which everyone is respected and treated fairly.Role synopsisDigital is at the epicentre of bp's transformation.The role develops cybersecurity vision and capabilities to protect bp, working as part of a cross-functional team. It will focus in on Digital Security's Counter Threat and Intelligence team, plus work with the wider architecture and service delivery communities.Key accountabilitiesTeam: Integral role in building the team's skillset while demonstrating leadership values through delegation, motivation and trust. Not just lead, but "do".Relationships: Understands the long-term needs of the solution being developed and enables delivery by building strong relationships across bp and its supply chain.Architecture: Defines data and technology strategy and roadmaps and seeks practical solutions that optimize and re-use capabilities. Cares about quality and integrity.Technology: Passion for understanding and learning. Experienced in rapidly assessing new technologies with a commercial mindset.Safety and Compliance: Advocates and helps ensure our architectures, designs and processes enhance safety and improve digital security.Job AdvertFormal educationA Bachelor's (or higher) degree, ideally in Computer Science, Cyber security, MIS/IT, Mathematics, hard science, or equivalent work experience.Essential SkillsGood number years of experience in strategy, design and implementation of counter-threat and intelligence (cybersecurity) capabilities supporting international operating environments which include cloud services - both private and public. Experience should also include Enterprise Information Technology and Operational Technology (e.g. automation systems).An expert-level industry-recognised certification in Information Security or Cybersecurity (e.g. CISSP, GSE, OSCP), or specialist-route certification portfolio such as cyber forensics or incident response (e.g. GIAC).Excellent overall understanding of information and cybersecurity and experience delivering within agile frameworks.Experience designing effective, scalable, secure and resilient solutions for SOC, CERT, Cyber Intelligence and 'Red' teams, including automation of cybersecurity processes such as cyber incident response, forensics and intelligence processing.Strong experience and skills in a significant number of the following areas:Architectural, security, vendor and regulatory frameworksTechnical and security risk aspects of procurementCommercial product and service evaluation, driven by solid appreciation of business requirementsPrivacy and cyber monitoring frameworks and working with legal teamsSecurity aspects of IP networking including access, edge, interconnect, cloud and remote access domains.Operating systems (Windows, Linux) and modern abstracted cloud services.Cloud architectures including Azure and AWS and designing security within those across the NIST Cybersecurity Framework areas (identify, protect, detect, respond, recover).Threat management frameworks (e.g. MITRE ATT&CK®) and understanding of hacker and ransomware tactics, techniques and procedures and importantly, methods to counter them.SIEM, SOAR, TIP and data lake technologies.Incident response process design and testing.Service-design and quality assurance for security-related services.Experience developing technical reference models, roadmaps and key design decisions.Mindset for achieving operational simplicity, maximum value and reuse - avoiding wastage, silos and 'technical debt'.Ability to prioritise tasks and work independently.Demonstrable passion for emerging technology with expertise across domains.Hands-on experience in enterprise cybersecurity, architecture and security architecture frameworks, and appreciation of regulatory frameworks.Experienced with cloud integration and architecture, especially with Microsoft Azure and AWS, and integration with cloud security providers.Ability to describe the threat landscape and provide risk-driven advice to enable the business to achieve its goals efficiently, safely and quickly.Ideally, previous experience working within cybersecurity operations and incident response roles before moving into a security architecture roleLeadership & EQExcellent communication skillsYou notice morale within your team and work to positively influence thisExperience developing others to build architecture capability across an organization.You embrace a culture of change and agility, evolving continuously, adapting to our changing world.You are an effective team player, naturally looking beyond your own area/organizational boundaries to consider the bigger picture and/or perspective of others and build trust-based relationships with leaders and employees across Digital Security, and importantly the wider Innovation & Engineering and BP, applying cultural sensitivity.You are self-aware and actively seek input from others on impact and effectiveness.EntityInnovation & EngineeringJob Family GroupIT&S GroupRelocation availableNoTravel requiredNegligible travelTime TypeFull timeCountryUnited KingdomAbout BPINNOVATION & ENGINEERINGJoin us in creating, growing, and delivering innovation at pace, enabling us to thrive while transitioning to a net zero ‎world. All without compromising our operational risk management.Working with us, you can do this by:deploying our integrated capability and standards in service of our net zero and ‎safety ambitionsdriving our digital transformation and pioneering new business modelscollaborating to deliver competitive customer-focused energy solutionsoriginating, scaling and commercialising innovative ideas, and creating ground-breaking new ‎businesses from themprotecting us by assuring management of our greatest physical and digital risksBecause together we are:Originators, builders, guardians and disruptorsEngineers, technologists, scientists and entrepreneurs‎Empathetic, curious, creative and inclusive