Entity:

Technology

Job Family Group:

IT&S Group

Job Description:

You will work with

You will work with as a Senior Security & Compliance Engineer (SoD & AVM) , a digital expert bringing deep specialist expertise to bp. Senior SoD and AVM Engineer work on the strategic technology platforms we exploit from the market, or come with deep skills in the implementation and integration of market solutions into our overall technology landscape. You will bring a broad base of Digital technical knowledge and a strong understanding of software delivery principles. You will be familiar with lifecycle methods, with Agile delivery and the DevOps approach at the core. You will be skilled in the application of approaches such as Site Reliability Engineering in the delivery and operation of the technologies you deliver, working as part of multi-disciplinary squads.

In addition, you will play a critical role in implementing Segregation of Duties (SoD) and Access Violation Management (AVM) controls across bp’s identity and access management ecosystem. This includes collaborating closely with multi-functional teams such as Compliance Assurance, Application Security Reviewers, internal and external auditors, and other governance stakeholders to ensure robust GRC alignment. You will help define and implement automated controls, monitor violations, and support audit readiness, strengthening bp’s compliance posture while enabling secure and efficient operations.

Let me tell you about the role

As a Senior SoD and AVM Engineer within the Identity and Access Management (IAM) team, you will be responsible for delivering and governing access security and compliance capabilities for bp’s core SAP ERP landscape — including ECC, S/4HANA, HANA, SAP Ariba, SAP Fieldglass, SAP Analytics Cloud and SAP Fiori.

In this role, you will collaborate with stakeholders to define the vision, roadmap, and product strategy for access control across these platforms and work alongside a team of highly skilled Enterprise Technology Engineers and Software Engineers to resolve complex challenges and develop scalable, secure, and adaptive access models across supporting bp applications.

A key part of your responsibilities will include supporting and delivering solutions within the bp Identity Governance and Administration (IGA) platform — covering access control, enterprise role design, access recertification, and implementation of Segregation of Duties (SOD) policies and Access Violation Management (AVM) controls to ensure compliance and mitigate risk.

This is a hands-on technical role that offers the opportunity to deepen your expertise in identity, access management, automation, and multi-cloud platforms. You will gain exposure to new technologies, automation frameworks, and modern engineering practices while solving complex problems that accelerate bp’s digital transformation journey. Your work will strengthen operational security, improve efficiency, and ensure robust GRC compliance through proactive SOD and AVM monitoring, enabling the enterprise to deliver value at scale with confidence.

What you will deliver

• Design, Develop, Implement and lead solutions for SOD monitoring that measure simulated SoD’s as well as actual SoD’s.
• Enhance the integration of SOD solutions with bp’s Identity & Governance solutions
• Review and design SOD violation rulesets across SAP and non-SAP environments
• Ensure security baseline controls design is in accordance with global standards within the project constraints for SOD.
• Define and ensure business teams and technical teams understand the end-to-end process around segregation of duties and the compliance requirements and controls that form around this area.
• Design and management of technical mitigations and remediation where necessary.
• Coordinate with internal & external audit team to ensure all relevant information is provided, and any audit deficiencies are manage in line with bps policies.
• Work with control teams to define and design relevant risks that need to be managed
• Ensure guidance is provided to operational teams around operating bp’s compliance solutions in the most optimum way.
• Ensure relevant communications and knowledge transfer across compliance and SOD activities is conducted in a timely manner across the key communities at bp

What you will need to be successful (experience and qualifications)

• Experience in leading SOD’s and Violation risks across multiple applications.
• Good working knowledge of Agile and Waterfall delivery methodologies having worked to deliver across both methods.
• Competent in working across complex Identify & Access Management processes and designs.
• Deep identity and compliance knowledge across a multitude of business applications.
• Knowledge of Identity Governance and Assurance solutions e.g. SAP GRC, SAP AVM SNOW IRM, Saviynt, etc
• Experience in working with compliance and audit controls including SOX.
• Experience in medium/large-scale project implementation cycles
• Team player who is willing to speak up and share what they have learned and embrace bp’s core values and behaviours.
• Excellent verbal and written communication skills.
• Positive interpersonal skills, including the ability to establish and maintain good working relationships with others.
• Strong in documentation, process analysis, and design, requirement gathering and impact analysis
• Demonstrable Knowledge in the application of modern Service Delivery methods - Site Reliability Engineering to traditional ITIL, and understanding of Product Based delivery
• Strong Communications skills and a high ‘EQ’ with the ability to operate across complex business environments and stakeholders up to senior executive level

Essential skills

• Deep understanding of Cloud Technologies and the broader Identity and Access Management (IAM) landscape, with strong expertise in Governance, Risk, and Compliance frameworks, including Segregation of Duties (SOD) and Access Violation Management (AVM).
• Proven experience in operational application support, ensuring stability and efficiency.
• Strong capabilities in Performance Management and Supplier/Vendor Management. Outstanding Interpersonal Skills
• Exceptional interpersonal and communication skills, with the ability to collaborate across teams and stakeholders.

Skills that set you apart

• Certified Information Systems Security Professional (CISSP) – Demonstrates advanced knowledge of security principles, risk management, and compliance frameworks, which are critical for implementing effective Segregation of Duties (SOD) and Access Violation Management (AVM) controls.
• AWS / Azure Certifications – Validates cloud security and identity governance expertise, enabling the design and enforcement of SOD policies and AVM monitoring within cloud environments.

About bp

Our purpose is to deliver energy to the world, today and tomorrow. For over 100 years, bp has focused on discovering, developing, and producing oil and gas in the nations where we operate. We are one of the few companies globally that can provide governments and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner!

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

What we offer

It’s crucial to us that the differences we see in the world around us are reflected in our workplace. Who you are is what counts, not where you’re from or how you live your life. At bp, we support our people to learn and grow in a diverse and challenging environment. We believe that our team is strengthened by diversity. We are committed to encouraging an inclusive environment in which everyone is respected and treated fairly. There are many aspects of our employees’ lives that are meaningful, so we offer benefits to enable your work to fit with your life! These benefits include:

• Generous salary package including an annual bonus program and individual performance-based incentives.
• Additional EPF contributions totaling 15%.
• Excellent work-life balance & flexible working arrangements
• Collaborative environment that celebrates achievements, diversity, and culture
• Ongoing career development and progression opportunities in a global organization
• 16 weeks paid parental leave (4 weeks partner leave)

Travel Requirement

No travel is expected with this role

Relocation Assistance:

This role is not eligible for relocation

Remote Type:

This position is a hybrid of office/remote working

Skills:

Commercial Acumen, Communication, Data Analysis, Data cleansing and transformation, Data domain knowledge, Data Integration, Data Management, Data Manipulation, Data Sourcing, Data strategy and governance, Data Structures and Algorithms (Inactive), Data visualization and interpretation, Digital Security, Extract, transform and load, Group Problem Solving

Legal Disclaimer:

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us.

If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.