Remote Cyber Security Audit Jobs (NOW HIRING)

The Manager of Cybersecurity is responsible for overseeing cybersecurity processes that support the Company's enterprise technology environment, including corporate IT systems and Operational Technology (OT) environments that support field operations. Reporting to the Chief Information Officer, this role contributes to management's responsibilities for identifying, assessing, and managing material cybersecurity risks associated with information systems, digital platforms, and industrial control environments. 

This position supports the Company's cybersecurity risk management strategy by overseeing cybersecurity and identityrelated processes, integrating security considerations into technology operations, and supporting regulatory, audit, and disclosure obligations applicable to a publicly traded oil and gas enterprise. 

Cybersecurity Risk Management & Strategy 

• Support the cybersecurity risk management processes by overseeing security and accessrelated practices across enterprise IT and OT environments
• Provide riskinformed input to the CIO regarding cybersecurity considerations related to technology platforms, system architectures, and operational dependencies, including field operations
• Understanding of AI and the governance required to manage the associated cybersecurity risk

Operational Technology Cybersecurity Oversight 

• Oversee cybersecurity practices relevant to OT environments, including supervisory control and data acquisition (SCADA) systems, and other operational platforms that interact with the physical environment
• Coordinate with OT and operational stakeholders to integrate cybersecurity controls in a manner that considers performance, reliability, and safety requirements unique to industrial environments
• Demonstrated ability to influence cross-functional teams of both IT and field operators to adopt security standards that meet the risk tolerance of the company
• Support processes used to assess and manage cybersecurity risks in OT systems, including thirdparty connectivity, remote access, and system modernization initiatives, consistent with industry guidance for OT security

Identity & Access Management

• Oversee identity and access management processes used to control access to enterprise and operational systems, including workforce, contractor, and thirdparty access
• Support governance processes related to access provisioning, access review, and privileged access in both IT and OT environments
• Coordinate with technology and operations teams to align identityrelated controls with system availability and operational requirements while supporting cybersecurity risk management objectives

Governance & Management

• Support management's role in cybersecurity governance by maintaining cybersecurity and accessrelated policies, standards, and procedures within the CIO organization
• Collaborate with Enterprise Risk Management, Legal, and Internal Audit to align cybersecurity and identity practices with disclosed risk management and governance processes
• Assist in preparing management inputs for cybersecurityrelated governance forums and, as appropriate, boardlevel reporting

Cybersecurity Operations & Technology Alignment 

• Infrastructure and platform security, cloud and hybrid technology environments
• Identityenabled security controls and access governance
• Vulnerability management and remediation coordination
• Partner with Enterprise Architecture and IT leadership to align cybersecurity and identity practices with the Company's enterprise technology strategy

Compliance, Audit & Disclosure Support 

• Demonstrate an understanding of SOX controls and how to handle PII related data and other audit and regulatory requirements
• Support internal and external audit activities related to cybersecurity and access controls, including systems relevant to financial reporting and regulated operations
• Maintain documentation and artifacts supporting cybersecurity risk management, governance, and compliance activities
• Assist in evaluating cybersecurity and accessrelated issues for potential risk impact and prioritization, including matters relevant to publiccompany disclosure considerations under SEC rules

Cybersecurity, OT & Identity Expertise 

• Broad knowledge of cybersecurity principles as applied to both enterprise IT and OT environments used in energy or critical infrastructure operations
• Understanding of cybersecurity and access risks relating to system availability, integrity, confidentiality, and safety
• Experience supporting identity and access management as a component of enterprise cybersecurity and operational risk management

Business & Communication Skills 

• Ability to communicate cybersecurity and accessrelated concepts in clear, factual, and businessrelevant terms
• Experience partnering with IT, OT, and business stakeholders in riskinformed decisionmaking
• Demonstrated judgment operating in disclosuresensitive environments 

Industry & Regulatory Experience 

• Experience in large, complex enterprises; oil & gas, energy, or other criticalinfrastructure environments strongly preferred
• Familiarity with publiccompany cybersecurity governance, regulatory oversight, and compliance expectations

Organizational Leadership 

• Lead and develop personnel responsible for cybersecurity engineering, access governance, and operational support
• Manage budgets and thirdparty resources supporting cybersecurity and identity capabilities within the CIO organization
• Establish operational metrics to monitor effectiveness and maturity of cybersecurity and accessrelated processes over time 

• Minimum:  Bachelor's degree in Information Technology, Information Security, or a related field

• Relevant professional certifications preferred (e.g., CISSP, CISM, CRISC). 

Minimum: 12 - 15 years related work experience