Overview
As bp continues its journey toward becoming an integrated energy company, maintaining robust digital security across our operations is critical. We are looking for a Digital Security Advisor who will act as a key point of contact for digital security within a defined business portfolio, providing subject matter expertise and working closely with stakeholders to implement and maintain best-in-class cyber practices. This role is central to safeguarding bp's digital assets while enabling business growth and innovation.
Key Responsibilities
Relationship and Customer Management
- Serve as the primary contact for all digital security-related matters within the assigned business area.
- Build and maintain strong relationships with key stakeholders to influence secure digital practices.
- Align digital security initiatives with business goals and operational realities.
Security Expertise
- Implement and manage digital security operating procedures based on established standards and frameworks.
- Provide expert advice to value streams and project teams on secure development, deployment, and operations.
- Guide security-related decisions in technical architecture, tools, and data handling practices.
Safety and Threat Response
- Prioritize cyber safety and integrate security into operational risk frameworks.
- Improve security controls by designing secure processes and infrastructure.
- Monitor digital environments for threats and coordinate appropriate threat responses.
Monitor and Assess
- Continuously assess security risks and maintain visibility over digital domains.
- Collaborate with risk and compliance teams to evaluate vulnerabilities and enforce corrective actions.
Strategize and Protect
- Design and implement proactive security strategies and defenses for data and systems.
- Coordinate with architecture and delivery teams to embed security by design principles.
Respond and Recover
- Act as a partner during cyber incidents, minimizing impact and leading recovery processes.
- Drive incident management improvements and lessons learned.
Educate and Advocate
- Promote security awareness and behavior change through campaigns and training.
- Foster a culture of vigilance and responsibility across the organization.
Innovate and Guide
- Provide forward-thinking security guidance during the development of new digital products.
- Help the business stay ahead of emerging threats and evolving regulatory requirements.
Protect & Defend
- Lead mitigation efforts for security risks discovered through audits, assessments, and monitoring.
- Ensure continuous cyber hygiene across business platforms and partner environments.
Qualifications and Experience
Education
- Bachelor's degree in Information Security, Computer Science, or related field.
- Professional certification such as CISM, CISSP, or currently pursuing equivalent credentials.
Experience
- Prior experience in similar digital security roles within sectors such as finance, oil & gas, trading, retail, HR, or supply.
- Strong technical understanding of security solutions and tools across digital environments.
- Demonstrated ability to balance commercial priorities with robust security measures.
- Experience working in fast-paced, multi-partner digital ecosystems.
- Solid knowledge of enterprise risk management, compliance, and digital governance.
Other Requirements
- Strong communication and influencing skills with both technical and non-technical audiences.
- Excellent multitasking and project management capabilities.
- Adaptability to shifting priorities and evolving security threats.
- Strong analytical mindset, using data and insights to support decision-making.
