Senior Ot Cybersecurity Engineer

Chevron's strategy is straight-forward: be a leader in efficient and lower carbon production of traditional energy, in high demand today and for decades to come, while growing lower carbon businesses that will be a bigger part of the future. To achieve these goals, we'llbuild on the assets, experience, capabilities, and relationshipswe've developed over 140 years to incubate and grow new business.Technology will play a crucial role in unlocking ever cleaner and more affordable sources of energy. Chevron is seekinginnovative, technology professionals with a desire to thrive in the global digital environment and help us lead the global energy transition.?An IT career at Chevron offers you the opportunity to work in a technical environment with a global reach.You'llfind that we make a business of investing in our people and encouraging your professional development through a learning culture and challenging on-the-job opportunities. We differentiate?ourselves through the application ofcutting-edgetechnology, and by taking a collaborative approach that includes in-houseexpertise, proprietary solutions, and strategic partnerships. We also offer flexible work schedules andvery competitive benefits.Join Chevron IT. Lend us your skills and enjoya great careerwith Chevron.?The OT Cyber Engineering and Innovation teamis responsible forthe strategic direction OT/ICS cybersecurity in Chevron. OT Cybersecurity Engineers support activities such as secure-by-design, standardized network architectures, and the secure implementation of OT/ICS digital technologies across Chevron.OT Cyber Engineers are cybersecurity influencers functioning at the Chevron Enterprise level, reaching broadly across all platforms, all IT Foundational Platform product lines, select Digital Platforms, and OT/ICS Business Unit teams. These engineers have a grasp of business breadth, along with technical depth to help stakeholders make quality cybersecurity investment decisions.This role positivelyimpactsglobal security practices, in various operating assets and environments, delivering on the Chevron cybersecurity integrated risk management strategy.The RoleContribute to developing strategic OT/ICS Cybersecurity initiatives, technology projects and security programs across the Chevron Enterprise globallyContribute to the design and review of secure ICS/OT network architectures and data flows including communication between applications, ports, protocols, and servicesContribute to the creation of OT/ICS cybersecurity guardrails to ensure all OT architectures, solutions and technologies across the Chevron enterprise are built using a secure-by-designmethodologySet cybersecurity expectations with governance boards, responsible for decision authority on policies, architecture, internal standards, guardrails, and initiatives for OT CybersecurityUtilize industry standards and frameworks (e.g., NIST-800-53/82, ISA/IEC-62443, MITRE ATT&CK / D3FEND), toidentifycapabilities and technologies to provide enhanced cyber defenses in diverse scenariosDevelop OT security research project proposals for consideration by external energy industry organizations or internal research portfolios. Research, test, and/or lead proof-of-concepts for new and emerging OT technologiesLead cybersecurity risk assessments for Chevron's Business Unit ICS/PCN designs/installations and/or emerging technology OT solutions todeterminecriticality rankings and risk gapsLead OT cybersecurity assessments including detailed design reviews, system andcomponentdescriptions, identification andselectionof evaluation criteria, network topology reviews, mapping of data flows to ports, protocols, and services tablesSafely support vulnerability scanning of OT/ICS including the qualified use of common scanning technologies and practices ofnew technologiesProvide recommendations and plans to mitigate identified issues from OT/ICS cybersecurity and risk assessments, ICS Vulnerability assessments, and OT Pen testsLead orparticipatein industry standard committees, customer advisory councils, and/or technology joint industry projects (JIPs) for OT/ICS environmentsInfluence stakeholders at an enterprise level on OT Cyber initiatives.Provide subject matter leadership in cybersecurity infrastructure during cyber incidents, response, and remediation.Take a technical leadership role in the internal OT Cybersecurity Guild, for knowledge transfer and mentoring, and activelyparticipate, contribute, and present to other OT/ICS Cybersecurity forums/conferences (both internal and external).Some travel (up to 20%) may berequired.As aSenior OTCybersecurityEngineeryou will:Lead OT cybersecurity, and secure by designassessments including detailed design reviews, system andcomponentdescriptions, identification andselectionof evaluation criteria, network topology reviews, mapping of data flows to ports, protocols, and services tablesContribute to the creation of OT/ICS cybersecurity guardrails to ensure all OT architectures, solutions and technologies across the Chevron enterprise are built using a secure-by-designmethodologyContribute to the design and review of secure ICS/OT network architectures and data flows including communication between applications, ports, protocols, and servicesLead cybersecurity risk assessments for Chevron's Business Unit ICS/PCN designs/installations and/or emerging technology OT solutions todeterminecriticality rankings and risk gapsSafely support vulnerability scanning of OT/ICS including the qualified use of common scanning technologies and practices ofnew technologiesProvide recommendations and plans to mitigate identified issues from OT/ICS cybersecurity and risk assessments, ICS Vulnerability assessments, and OT Pen testsInfluence stakeholders at an enterprise level on OT Cyber initiatives.Provide subject matter leadership in cybersecurity infrastructure during cyber incidents, response, and remediation.RequirementsExperienceMinimum 5 years related work experience in Operational Technology/Industrial Controls Systems Cybersecurity field with increasing levels of responsibility."Hands-On" experience with OT/ICS critical infrastructure in energy or similar industries preferred.Experience inutilizingframeworks and standards such as NISTSP800-53/82 and IEC-62443 in an ICS environmentExperience in conducting and/or leading cybersecurity assessments (risk, vulnerability) and creating a detailed mitigation plan and recommendations to address gapsidentifiedExperience in performing OT/ICS vulnerability scans, passively and actively with technologies such as Tenable Nessus or NMAP scanning tools.Experience with selecting, designing, architecting, and deploying security technologies to an OT/ICS environmentDemonstrated OT Cybersecurity project experience including leading the development of security architectures (programs) and secure network architectures (systems).SkillsDemonstrated understanding ofOT/ICS critical infrastructure in energy or similar industriesincludingand understanding of threats, vulnerabilities, attack paths and exploits in an OT/ICSenvironment.ProficiencyinOT/ICSnetwork design andbuilding network architecture drawings.Demonstrated ability toinfluence others,work effectively, and communicate effectively at all levels with operations, design, projects, vendors, peers, etc.Demonstrated ability to provide leadership behaviors across enterprise through rigorous change management and compliance processes, while driving efficiencies.Knowledge of techniques and tools that promote effective analysis and the ability todetermineroot cause and resolution of problem.Communicates in a clear, concise, understandable manner both orally and in writing.Hands on use of cybersecurity technologies such as network mapping and vulnerability scanning in OT/ICS environmentspreferred, but notrequired.Familiarity with Cloud and OT/ICS integration is preferred, but notrequired.EducationBachelor's degree or master's degree in information technology, Computer Science, Engineering, or related STEM field is preferred, but notrequired.Cybersecurity certification such as the CISSP, CISA, GICSP, or ISA Secure, is preferred, but notrequired.Flexible WorkingChevron offers a complete package andprovidescareer development opportunities to all employees. We do this through on-boarding, training and development, mentoring, volunteering opportunities and employee networking groups. We advocate work-life balance and offer employees access to various health and wellness programs.What type of flex work does the position offer??Weoffer alternative work schedules including 9/80 (work 9-hour days, with every other Friday off)?Weoffer a hybrid work model - work remotely from home 2-3 days a weekRelocation & International ConsiderationsRelocation[?willnot be] considered.Expatriate assignments[?may / will notbe?]considered.Chevron regrets that it is unable to sponsor employment Visas or consider individuals on time-limited Visa status for this position.Working with usChevron is one of the world's leading integrated energy companies. We believe affordable,reliableand ever-cleaner energy is essential to achieving a more prosperous and sustainable world. Chevron produces crude oil and natural gas; manufactures transportation fuels, lubricants,petrochemicalsand additives; and develops technologies that enhance our business andthe industry.?We are focused on lowering the carbon intensity in our operations andseekingto grow lower?carbon businesses along with our traditional business lines.?More information about Chevron is available at?www.chevron.com.BenefitsChevron offers competitive compensation and benefits programs which includes, but is not limited to, variable pay, healthcare coverage, retirement plan, insurance, time off programs, training and development opportunities and a range of allowances connected to specific work situations. Details of such benefits and allowances are available athttps://hr2.chevron.com/.The compensation and reference to benefits for this role is listed on this posting in compliance with Colorado law. The selected candidate's salary will bedeterminedbased on his or her skills, experience, and qualifications.Regulatory Disclosure for US Positions:Chevron is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religious creed, sex (including pregnancy), sexual orientation, gender identity, gender expression, national origin or ancestry, age, mental or physical disability, medical condition, reproductive health decision-making, military or veteran status, political preference, marital status, citizenship, genetic information or other characteristics protected by applicable law.We are committed to providing reasonable accommodations for qualified individuals with disabilities. If you need assistance or an accommodation, please email us ****** participates in E-Verify in certain locations as required by law.