Chief Security Architect (Manager, Engineering And Innovation)

Chevron is accepting online applications for the position of Chief Security Architect (Manager, Engineering and Innovation) located in San Ramon, CA or Houston, TX through January 31, 2021 at 11:59 p.m. (Pacific Time).

Overview

Responsible for the strategic direction and technical execution of security-by-design. Security-by-design is a critical element of the digital transformation, allowing product development to occur quickly and securely across the information technology (IT) and operational technology (OT) digital platforms, weighing usability and reliability with security to deliver essential business value. This role reaches broadly across the digital platforms to drive quality investment decisions that enable identification and mitigation of risk, detection and response to threats, risk management, IT/OT security, forensics and insider risk operations that impact all of Chevron's global operations. Engages with multiple levels of enterprise technology and business leadership to gather input which influences direction of our security strategy, architecture, and overall digital strategy.

Responsibilities for this position may include but are not limited to:

Oversees development and implementation of global IT and OT cybersecurity architecture, guardrails, and research for all digital environments supporting Chevron's global operations:

• Manages identification of critical business and technology risks and aligns with strategic business imperatives to enable the secure delivery of business value.

• Develops, maintains, and oversees implementation of Chevron's cybersecurity future-state architecture.

• Oversees development and implementation of cybersecurity guardrails for all digital platforms to ensure the secure deployment of Chevron's infrastructure and applications.

• Stays informed on emerging threats and technologies by working with other Chevron teams, peers, and industry partners.

• Provides technical leadership for cybersecurity resources, facilitating cross discipline discussions and decisions on architectural direction for digital security services including risk and cybersecurity functions.

• Participates in industry forums and partnerships to align Chevron's strategic direction with the general direction of the industry and to ensure Chevron does not have gaps in its strategy.

Researches emerging and disruptive technologies that align business capabilities with digital strategy for IT and OT

• Manages cybersecurity investment of IT/OT through Research and Development

• Partners with Chevron Technology Ventures to identify promising early stage companies for investment and research opportunities.

• Drives innovation opportunities with various research partners including universities, emerging cybersecurity companies.

• Represents Chevron to external cybersecurity entities including conferences, committees and other technology information sharing engagements.

• Maintains technical expertise in the cybersecurity discipline and acts as a technical leader and mentor for the enterprise.

Accountable for:

• Management of the security architecture process, capabilities, and resources for all risk and cybersecurity services.

• Development of Reference/Target Architectures, guardrails, and proof-of-concept testing for risk and cybersecurity services.

• Managing the enterprise IT and OT Security Engineer roles.

• Integrating target architecture with governance processes for identification, approval, and management of standards.

• Application of architecture processes and security guardrails during agile development.

• Development of processes for detecting drift beyond established guardrails.

• Accountable for the application of segregation of duties, and escalation authority related to security guardrail issues

General responsibilities include:

Manages the performance of work group with 7 direct reports and 50+ personnel, holds performance management planning and review sessions; sets clear expectations; provides feedback using input from customers, management, team leads, and technologists; and supports Learning Action Plans. Develops people, provides opportunities for training and development, delegates effectively, rewards educated risk taking, coaches employees, and reinforces role model behaviors. Develops and encourages teamwork and Chevron Way behaviors: encourages diversity, builds collaboration, pushes out decision making, facilitates conflict resolution, and creates supportive environment by eliminating barriers. Accountable for overall performance management of all staff and member of multiple Leadership Teams.

Builds and maintains organizational capability in the Cybersecurity Engineering and Innovation domain. Provides training, opportunities, and career path for staff. Understands and responds to competency levels at Chevron and seeks to maintain the skills in this domain. Determines the right mix of Chevron employees and external service providers. Implements accelerated employee development programs to ensure the needed supply of Chevron retained competencies is maintained.

Required Qualifications:

• 10 years of experience in the cybersecurity domain

• Extensive experience with information technology

• Extensive experience with operational technology

• 5 years of experience with security architecture

• 5 years of experience

• Demonstrated understanding of SAFe and Agile development

• Demonstrated understanding of Cloud architecture and security

Preferred Qualifications:

• 15 years of experience in the cybersecurity domain

• 5+ years of experience with operational technology and PCN environments

• 5+ years of experience with SAFe and Agile development

• 5+ years of experience implementing designing cloud architecture and/or securing cloud architecture

Relocation Options:

• Relocation will be considered.

International Considerations:

• Expatriate assignments will not be considered.

Chevron regrets that it is unable to sponsor employment Visas or consider individuals on time-limited Visa status for this position.

Regulatory Disclosure for US Positions:

Chevron is an Equal Opportunity / Affirmative Action employer. Qualified applicants will receive consideration for employment without regard to race, color, religious creed, sex (including pregnancy, childbirth, breast-feeding and related medical conditions), sexual orientation, gender identity, gender expression, national origin or ancestry, age, mental or physical disability (including medical condition), military or veteran status, political preference, marital status, citizenship, genetic information or other status protected by law or regulation.

We are committed to providing reasonable accommodations for qualified individuals with disabilities. If you need assistance or an accommodation, please email us at emplymnt@chevron.com.

Chevron participates in E-Verify in certain locations as required by law.