Murphy Oil

Specialist, IT Application & Data Security

Murphy Oil

At Murphy Oil Corporation, we believe the rich experiences and backgrounds of our employees strengthen our Company, create a productive workforce, and drive our success. We encourage you to apply for the positions for which you meet the qualifications.

Job Summary

Murphy Oil Corporation is looking for highly skilled and hands-on Application & Data Security Specialist to support the development and execution of our enterprise data security and cyber resilience strategy. This role will focus on securing critical business applications, sensitive data, and supporting the organization's readiness to withstand and recover from cyber disruptions. The ideal candidate will have deep experience in application security (with emphasis on DevSecOps and open-source environments), data protection (including SAP and cloud ecosystems), and disaster recovery/cyber resilience planning.

This position will work cross-functionally with Enterprise Architecture, Enterprise Applications, Data & AI, and Business Technology teams to ensure data is securely managed across the lifecycle. It will also align with Legal and Compliance teams to address data privacy, sovereignty, and regulatory obligations.

The ideal candidate will be able to demonstrate exceptional organizational and time-management skills, with a proven ability to propose and implement effective solutions within budget and deadline constraints. Thrives in fast-paced, high-pressure environments, showing adaptability to shifting priorities and evolving business needs. Equally capable of working independently or collaboratively, with a strong commitment to knowledge sharing and team development. Skilled in influencing positive change through a constructive and non-confrontational approach.

Murphy's Purpose, Mission, Vision, and Values-Doing Right Always, Stay With It, and Think Beyond Possible-emphasize the importance of clear communication, honoring commitments, fostering collaboration across the organization, recognizing the contributions of others, constructively challenging data, encouraging innovation, and proactively proposing solutions. The path of contribution includes leading defined initiatives, working semi-autonomously to drive meaningful results, advancing technical expertise, cultivating business acumen, building a strong professional reputation, and consistently demonstrating Murphy's core values.

The Specialist, IT Application & Data Security will work in our Houston Corporate office and may work two (2) days a week remotely.

Responsibilities

Application & Open-Source Security
• Lead the design and implementation of secure SDLC and DevSecOps practices across application development teams
• Define security requirements and controls for applications developed using Python and other scripting languages
• Secure the use of open-source components, integrating automated tools such as SCA (Software Composition Analysis), SAST, and DAST
• Provide technical guidance to developers and business technologists, translating complex security risks into understandable and actionable items
• Partner with product owners and DevOps teams to embed security into CI/CD pipelines.

Data & SAP Security
• Collaborate with Enterprise Architecture, Data & AI, and SAP teams to design and implement data protection controls across on-premi and cloud environments
• Support the development of a comprehensive data security strategy, including classification, encryption, access control, and monitoring
• Ensure sensitive data within SAP and enterprise platforms is protected in accordance with business needs and regulatory requirements
• Conduct assessments to identify data security gaps and recommend mitigation strategies
• Align data and application security controls with relevant regulations (e.g., GDPR, CCPA, SOX) and internal policies
• Contribute to internal audits and assessments, and support remediation of identified risks

Cyber Resilience & Disaster Recovery
• Develop a cyber resilience strategy focused on the protection and recovery of critical data assets
• Define architecture requirements and best practices for secure backup, recovery, and immutable storage
• Design and coordinate realistic disaster recovery drills to test the organization's cyber resilience posture
• Evaluate DR and backup solutions for alignment with data criticality, RTO/RPO requirements, and cyber threat scenarios

Licenses/ Certifications

Relevant certifications such as CISSP, CISM, SABSA, TOGAF, or AWS/GCP/Azure Security are a plus

Qualifications/Requirements
• Bachelor's degree in Computer Science, Information Security, or a related technical field
• Minimum 5 years of experience in application security, data protection, or cybersecurity roles
• Proven experience implementing DevSecOps practices and securing open-source environments, especially in Python-heavy ecosystems
• Strong understanding of SAP security, data classification, and cloud data protection controls
• Hands-on experience securing data platforms such as Databricks including integration with IAM, data masking, and encryption controls
• Familiarity with data lakehouse architectures, big data pipelines, and the unique security considerations of AI/ML environments
• Experience with data governance platforms (e.g., Collibra, Alation), AI/ML security, or Zero Trust for data pipelines
• Experience designing cyber resilience or disaster recovery strategies focused on critical data.
• Solid understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS, MITRE ATT&CK)
• Ability to bridge the gap between technical teams and business stakeholders with strong communication and influence skills
• Participate in the security on-call rotation to provide timely support for cybersecurity operations and be available during nights or weekends as needed
• Strong project management experience, including developing plans, roadmaps and milestones
• Experience with project management tools like Azure DevOps, Jira, etc.
• Experience with SAST/DAST platforms
• Effective communication skills both written and verbal
• Detail-oriented and delivery-focused
• Highly organized with strong time-management skills.
• Maintain user confidence and protect operations by keeping information confidential

The individual is required to follow all applicable safety precautions. Work is performed almost entirely in a controlled (i.e., inside) environment and does not typically subject the incumbent to any hazardous/extreme elements; some positions may require regularly moving or transporting items weighing up to 25 lbs. around the office for various needs. The successful candidate must be able to complete all essential physical requirements of the job with or without reasonable accommodation.

Desired/Preferred Qualifications
• Master's degree in Computer Science, Information Security, or a related technical field
• Minimum of 2 years of experience working in a Big 4 consulting firm (Deloitte, PwC, EY, or KPMG), with exposure to cybersecurity advisory, risk management, or compliance services
• Experience conducting DR drills and tabletop exercises with cross-functional teams.
• Background in data governance or collaboration with data stewards and privacy/legal teams.
• Exposure to enterprise security and backup tools such as Tenable, Prisma Cloud, Qualys, Rubrik, Veeam, etc.
• Familiarity with privacy laws and their impact on data security practices.
• Experience with compliance automation and continuous controls monitoring.
• Experience working within the Oil/Gas industry
• Excellent communication and collaboration skills, with the ability to influence and engage both technical and business stakeholders

#LI-Hybrid

PURPOSE

We believe in providing energy that empowers people.

MISSION

We challenge the norm, tap into our strong legacy and use our foresight and financial discipline to deliver inspired energy solutions.

VISION

We see a future where we are an industry leader who is positively impacting lives for the next 100 years and beyond.

VALUES & BEHAVIORS

Do Right Always

  • Respect people, safety, environment and the law
  • Follow through on commitments
  • Make it better
Think Beyond Possible
  • Offer solution
  • Step up and lead
  • Don't settle for "good enough"
  • Embrace new opportunities
Stay With It
  • Show resilience
  • Lean into challenges
  • Support each other
  • Consider the implications


Murphy Oil Corporation participates in the Department of Homeland Security U.S. Citizenship and Immigration Services' E-Verify program. Please read the E-Verify Notice-English / E-Verify Notice-Spanish and Right to Work Notice before proceeding with your job application.

For additional information, you may also visit the USCIS website.

Murphy Oil Corporation is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, genetic information, age, national origin, sexual orientation, disability, protected veteran status or any other category protected by federal, state or local law.
EEO is the Law Poster
EEO is the Law Supplement

About Us

Murphy Oil

Company Information

Murphy Oil
Houston
Apply On Company Site

Rhoobi.com

Helping You Find The Right Job, Right Now.
© 2024 Rhoobi.com All Rights Reserved.