Information security Engineering specialist

Kuala Lumpur
Tetap
Sepenuh masa

17 hari lepas

Entity: TechnologyJob Family Group: IT&S GroupJob Description:Our team leads the response and management of global cyber incidents, using an intelligence-driven approach to identify threats, contain breaches, and ensure rapid, effective responses. By applying lessons learned and leveraging data analytics, we continuously evolve our engineering practices and strengthen bp’s cybersecurity defenses worldwide.We are seeking a Information security Engineering specialist to help empower our security experts and software engineers in building secure applications, automations, and infrastructure. In this role, you’ll support the development and enforcement of security standards across cloud, infrastructure, and data platforms, while promoting secure design principles and automation.You will work closely with cross-functional teams to uncover and remediate vulnerabilities, guide secure architecture decisions, and ensure consistent alignment with security best practices and business goals. Staying ahead of industry and technology trends, you will help fortify bp’s cybersecurity strategy and contribute to a culture of innovation and continuous improvement.Key Responsibilities

Design, implement, and maintain platform security standards; identify opportunities to automate secure practices throughout the infrastructure lifecycle.
Collaborate with business and technical stakeholders to embed security into product design and delivery while ensuring compliance with business requirements.
Act as a subject matter expert in at least one of the following domains: cloud security, infrastructure security, or data protection.
Provide hands-on guidance to engineering teams for secure configuration and issue remediation.
Align technical strategies and decision-making across teams and contribute to broader security governance.
Participate in and promote an inclusive, collaborative working environment with engineers, product managers, and other stakeholders.
Contribute to the evolution of the security roadmap to address future risks and requirements.
Assist teams by identifying and managing technical dependencies and security risks.
Develop and communicate clear guidance and documentation on embedding and measuring security across cloud, infrastructure, and data environments.
Mentor peers and foster a strong security-first culture across teams.

What You'll Bring – Experience & QualificationsRequired Experience:

3+ years in security engineering or technical infrastructure roles.
Minimum 3 years of hands-on cybersecurity experience in at least one area:
Cloud (e.g., AWS, Azure)
Infrastructure (e.g., IAM, networks, endpoints)
Data Security (e.g., DLP, data lifecycle management)

Technical Skills:

Strong experience designing and implementing secure architectures for complex cloud and data environments.
Proficiency in one or more object-oriented programming languages (e.g., Python, Java, Scala, C#).
Experience with cloud platforms such as AWS, Azure, or Alibaba Cloud.
Familiarity with full-stack development practices.
Experience with automation/scripting for security (e.g., Infrastructure as Code, CI/CD integration).
Knowledge of modern security tools (e.g., vulnerability scanners, CNAPP, endpoint protection, DLP tools).
Deep understanding of technologies across the full data lifecycle.

Additional Knowledge:

Working knowledge of key security frameworks, laws, and regulations, such as:
PCI-DSS
GDPR
CCPA
SOX
Strong stakeholder collaboration and ability to influence through technical leadership.
A growth mindset and commitment to continuous learning and improvement.

Why join our team?At bp, we provide an excellent working environment and employee benefits such as an open and inclusive culture, a great work-life balance, tremendous learning and development opportunities to craft your career path, life and health insurance, medical care package and many others.We support our people to learn and grow in a diverse and challenging environment. We believe that our team is strengthened by diversity. We are committed to crafting an inclusive environment in which everyone is respected and treated fairly.There are many aspects of our employees’ lives that are meaningful, so we offer benefits to enable your work to fit with your life. These benefits can include flexible working options, collaboration spaces in a modern office environment, and many others benefits.Reinvent your career as you help our business meet the challenges of the future.Apply now!Travel Requirement Negligible travel should be expected with this roleRelocation Assistance: This role is not eligible for relocationRemote Type: This position is a hybrid of office/remote workingSkills: Automation system digital security, Client Counseling, Conformance review, Digital Forensics, Incident management, incident investigation and response, Information Assurance, Information Security, Information security behaviour change, Intrusion detection and analysis, Legal and regulatory environment and compliance, Risk Management, Secure development, Security administration, Security architecture, Security evaluation and functionality testing, Solution Architecture, Stakeholder Management, Supplier security management, Technical specialismLegal Disclaimer:We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please .If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.

Memohon