Job Description

Entity: Technology
Job Family Group: IT&S Group
:
You will work with
This team safeguards the company's digital assets and ensuring robust cyber resilience. They cover various aspects of cybersecurity, including threat and exposure management, security engineering, cyber incident response, security DevOps, and insider threat. Each team has specific responsibilities and areas of focus, collaborating closely with other digital security teams and business units to ensure a cohesive approach to cybersecurity.
Let me tell you about the role
We are looking for an innovative Information Security Engineering Specialist to define, implement, govern, and strengthen our global container environment security across our multi-cloud platform, supporting critical business operations. In this role, you will focus on Container Security with a deep technical background in cloud-native ecosystems to govern and drive the protection of our containerized environments.
The ideal candidate brings a hands-on technical expertise for securing the container lifecycle - build, ship, and run - and will partner with the platform engineering, Secure DevOps, Application Security and SRE teams to design and implement secure and automated controls that continuously reduce the risk without slowing down delivery. You will ensure compliance with industry regulations, safeguard critical data, and enable secure integration across diverse business environments.
What you will deliver
Container Security Advisory & Strategy - Act as the Container Security Specialist, supporting DevOps and platform teams on secure-by-design principles. Align container security strategy with the global business goals and regulatory requirements.
Policy, Standards & Governance - Improve the global container security standards, baseline, and Policy-as-code tailored for Oil & Gas, covering critical infrastructure protection aligned with NIST SP 800-190, and other security principles. Implement and improve governance for sophisticated containerized environments supporting global operations. Conduct detailed security assessments and reviews of critical containerized infrastructure.
Engineering & Architecture - Build and implement security policies for Kubernetes (K8s) clusters, including RBAC, Network Policies, and Pod Security Standards. Review CI/CD pipelines for vulnerabilities in container images and third-party libraries. Handle runtime container security tools to detect and intercept anomalous behavior. Implement and enforce compliance to ensure "Secure by Build" environment.
Collaboration & Relationships - Build positive relationships across business units and technology ecosystems.
Safety & Compliance - Champion operational safety and digital security by ensuring container security policies reinforce compliance.
What you will need to be successful (experience and qualifications)
9+ years of cyber security experience, including 5+ years of experience in leading a container security engineering.
Extensive experience on one of the following areas: Container Security, image scanning, SBOM, dependency control, runtime security, eBPF tools, Cloud Security (AWS and Azure), etc.
Deep experience in crafting container security solutions for reliable and scalable infrastructure, cloud and data products in sophisticated environments.
Experience with automation and scripting for security tasks (e.g., IaC, CI/CD integration) and security tooling (e.g., CNAPP such as PrismaCloud, Aqua, Wiz, and others).
Deep knowledge and hands-on experience in technologies across container security lifecycle stages.
Foundational knowledge of security standards, industry laws, and regulations such as Payment Card Industry Data Security Standards (PCI-DSS), General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA) and Sarbanes-Oxley (SOX)
Strong collaborator and ability to maneuver through technical influence.
Continuous learning and improvement approach.
Plus:
A degree or equivalent experience in computer science or engineering from a recognized institute.
Certifications like CKS, CKA, CKAD, KCNA, AWS / Azure Security Specialty or professional, CISSP or CCSP.
Development experience in one or more object-oriented programming languages (e.g., Python, Scala, Java, C#) and/or development experience in one or more cloud environments (including AWS, Azure, GCP, Alibaba, etc.)
Exposure/experience with full stack development.
About bp
bp is a global energy business with a purpose to reimagine energy for people and our planet. We aim to be a very different kind of energy company by 2030, helping the world reach net zero and improving people's lives. We are committed to creating a diverse and inclusive environment where everyone can thrive. Join bp and become part of the team building our future!
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
Travel Requirement Up to 10% travel should be expected with this role
Relocation Assistance: This role is eligible for relocation within country
Remote Type: This position is a hybrid of office/remote working
Skills: Consulting, incident investigation and response, Incident Management, Information Assurance, Information Security, Information security behaviour change, Risk Management, Stakeholder Management, Supplier Relationship Management, Supplier security management
Legal Disclaimer:
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp's recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please .
If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.

Skills Required