Job Description

Job Overview

The Associate Technology Spec (IT) is responsible for utilizing existing Technology procedures to solve routine or standard problems. They receive instruction, guidance, and direction from others within the team, and they will leverage their conceptual knowledge of theories, practices, and procedures related to Technology and Information Technology.



Our ingenuity fuels daily life. Together, we've forged some of the most trusted partnerships across the energy value chain to make what was once just an idea a reality: laying subsea infrastructure thousands of feet below sea level, installing platforms hundreds of miles from shore, using our expertise to design and build offshore wind infrastructure, and reshaping the onshore landscape to deliver the energy products the world needs safely and sustainably.




For more than 100 years, we've been making the impossible possible. Today, we're driving the energy transition with more than 30,000 of the brightest minds across 54 countries.

Key Tasks and Responsibilities:

Primary Functions


Support risk assessments for new IT projects, system upgrades, and third-party services (SaaS, IaaS, PaaS). Assist in day-to-day cybersecurity risk and compliance activities. Respond to customer security questionnaires and RFP-related inquiries. Maintain and update the cybersecurity risk register under guidance. Participate in meetings to understand and document risk-related concerns. Collaborate with senior team members and CISO for risk register reviews. Coordinate with internal teams during external and internal audits. Contribute to compliance and audit readiness efforts. Stay updated on cybersecurity threats, trends, and best practices. Support evaluation of new standards and their impact on existing systems. Research emerging technologies to identify potential cybersecurity improvements. Assist in planning and executing security awareness and phishing simulation programs.
Tasks and Responsibilities


Maintain and improve risk assessment and compliance documentation. Assist in updating cybersecurity policies and procedures. Learn and support tool configuration and feature optimization. Help integrate tools for automating response tasks. Participate in gap and maturity assessments. Support ISO 27001 and NIST compliance efforts. Help define and refine cybersecurity operations processes. Escalate findings to senior team members in a timely manner.

Essential Qualifications and Education:

Ideal Candidate Profile


2-3 years of experience in GRC, cybersecurity risk, or compliance roles. Familiarity with ISO 27001, NIST, and other cybersecurity frameworks. Experience with risk assessments, audits, and awareness programs. Strong communication and collaboration skills. Eagerness to learn and grow into a senior or lead role.
#LI-FM1