Senior Enterprise Technology Engineer - Security, Identity & Compliance

You will work as a Senior Enterprise Technology Engineer – Security, Identity & Compliance, leading security design, identity governance and compliance assurance across ERP and enterprise applications.

• Lead security architecture and identity governance for ERP platforms, ensuring compliance with security frameworks and access control policies.
• Develop and implement IAM policies, including RBAC, SSO, PAM and Zero Trust models.
• Ensure secure integration of SAP S/4HANA, Oracle ERP and third‑party applications with identity providers (Azure AD, Okta, Ping Identity, etc.).
• Lead risk assessment, threat modelling and vulnerability management for ERP environments, delivering proactive risk mitigation.
• Collaborate with compliance teams to meet SOX, GDPR, ISO 27001, NIST and industry regulatory requirements.
• Drive SAP security methodologies, segregation of duties, GRC and user provisioning automation.
• Implement SIEM solutions and incident response frameworks for ERP systems.
• Work with business collaborators to define security policies, security‑by‑design principles and ERP access governance.
• Lead data protection and encryption strategies for critical financial, HR and operational information.
• Conduct regular security audits, penetration testing and compliance reporting to improve the security posture.
• Develop disaster recovery (DR) and business continuity (BC) security frameworks against cyber threats.
• Provide security advisory for ERP cloud migrations, SAP RISE adoption and hybrid ERP security models.
• Lead third‑party security assessments and security awareness training programs.

• Bachelor's or Master's degree in Cybersecurity, IT, Computer Science or related field.
• 10+ years of experience in security engineering, identity management and compliance within enterprise IT environments.
• Strong expertise in ERP security (SAP S/4HANA, Oracle ERP, Workday or similar platforms).
• Experience implementing IAM, RBAC, MFA and Zero Trust Security models.
• Deep knowledge of SOX, GDPR, NIST, ISO 27001 and risk management frameworks.
• Hands‑on experience with SIEM, vulnerability scanning and incident response automation.
• Experience with SAP GRC and security roles configuration.
• Expertise in cloud‑based ERP security (SAP RISE, AWS, Azure, hybrid models).
• Strong stakeholder management and collaboration skills.

• Certifications such as CISSP, CISM, CRISC, SAP Security & GRC or Azure Security Engineer.
• Experience with AI/ML‑driven security analytics and Zero Trust security models.
• Exposure to blockchain security for ERP and advanced cloud security solutions.
• Experience in regulated industries such as energy, finance or manufacturing.

• Generous salary package including annual bonus program and performance‑based incentives.
• Additional EPF contributions totaling 15%.
• Excellent work‑life balance and flexible working arrangements.
• Collaborative environment celebrating achievements, diversity and culture.
• Ongoing career development and progression opportunities in a global organization.
• 16 weeks paid parental leave (4 weeks partner leave).

bp is a global energy business committed to reinventing energy for people and the planet. The company values diversity, inclusion and offers career development opportunities in a global organization.

We are an equal opportunity employer and value diversity. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to the recruitment process. If you are selected for a position, your employment may be contingent upon local policy, pre‑placement drug screening, medical review and background checks.