Information Security Engineering Specialist
Bp
IT
Pune, Maharashtra, India
Posted on Oct 8, 2025
Entity:
Technology
Job Family Group:
Job Description:
You will work with
This team is responsible for response and management of cyber incidents, utilizing an intelligence-led approach for identification, mitigation, and rapid response to safeguard bp on a global scale. By applying lessons learned and data analytics, they establish engineering principles and enhance the technology stack to continuously bolster bp's cybersecurity posture.
Let me tell you about the role
As a Cloud SecOps Engineer, you will be responsible for deploying, maintaining, and supporting both third-party and custom security solutions that underpin the operations of our Cyber Threat and Engineering teams. Your work will ensure the reliability and effectiveness of platforms critical to incident response, threat detection, and security automation.
You’ll collaborate closely with internal digital security and delivery teams to integrate new cloud security technologies, automate workflows, and optimize data pipelines for monitoring and investigations. This role emphasizes hands-on ownership of cloud security integrations, continuous improvement of security controls, and operational excellence across our security platforms.
What you will deliver
- Collaborate with internal digital security teams and digital core/delivery teams to integrate new cloud security solutions; assume long‑term ownership for DS-specific solutions once in production—maintain, enhance, and support.
- Design and implement automation & integration workflows that accelerate detection and response (e.g Logic Apps, Azure Functions, AWS Lambda, EventBridge, IBM Resilient orchestration), maintaining them as reliable, reusable services.
- Build and operate reporting and executive dashboards that show coverage, control posture, and risk trends across cloud estates; expose metrics and data products via APIs for downstream consumers.
- Own and expand cloud security integrations for Wiz, AWS, and Azure—ingesting, normalizing, and enriching telemetry into bp’s security data platforms (e.g., Microsoft Sentinel, Azure Data Explorer/Data Lake) with robust KQL functions, schemas, and data quality controls.
- Engineer and optimize data ingestion pipelines (throughput, latency, cost) for security monitoring and investigations, with strong observability, runbooks, and SLOs.
- Embed security validations in CI/CD (Azure DevOps/GitHub Actions) for integrations and automations, including unit/integration tests, policy‑as‑code, infrastructure‑as‑code and secure release processes.
- Provide advanced analytics in support of detection and response (KQL, UEBA, anomaly models), and contribute to continuous tuning of rules, playbooks, and data quality.
- Maintain operational excellence for platforms and services (proactive monitoring, patching, break/fix, service enhancements) and keep documentation and knowledge bases current.
What you will need to be successful (experience and qualifications)
- Seasoned security engineer (3+ years) with hands‑on delivery in cloud security DevOps, data pipelines, and automation across complex, hybrid cloud environments.
- Deep practitioner experience with cloud security products and platforms: Wiz (posture policies, custom queries, integrations via APIs/webhooks), Microsoft Sentinel/Defender for Cloud, Azure Data Explorer, Log Analytics.
- Strong data engineering & analytics skills for security: schema design/normalization, KQL/SQL proficiency, pipeline instrumentation, and cost/performance optimization for high‑volume telemetry.
- Proficiency in Python and/or PowerShell for integration and automation; experience with serverless (Azure Functions/AWS Lambda), REST/Graph APIs, event‑driven workflows, and messaging.
- Experience building CI/CD for security integrations and infrastructure‑as‑code (Terraform, Bicep, and/or CloudFormation), including automated testing and release governance.
- Working knowledge of cloud security frameworks and practices (e.g., NIST CSF, CIS Benchmarks, Well‑Architected) and detection methodologies (e.g., MITRE ATT&CK).
- Clear, structured documentation skills; ability to collaborate across teams, influence engineering decisions, and drive continuous improvement.
- Relevant certifications (e.g., AZ‑500, SC‑200, AWS Security Specialty) are a plus.
About bp
bp is a global energy business with a purpose to reimagine energy for people and our planet. We aim to be a very different kind of energy company by 2030, helping the world reach net zero and improving people’s lives. We are committed to creating a diverse and inclusive environment where everyone can thrive. Join bp and become part of the team building our future!
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
Travel Requirement
Relocation Assistance:
Remote Type:
Skills:
Legal Disclaimer:
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us.
If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.
