Program Manager - EVM & Compliance

IN-TG-HYDERABAD-SKYVIEW BUILDING

Baker Hughes

Baker Hughes | We take energy forward - making it safer, cleaner, and more efficient for people and the planet.

View all jobs at Baker Hughes

Apply now Apply later

Program Manager - EVM & Compliance
 

Are you an Engineer looking for an interesting and inspiring opportunity?
 

Are you passionate about being part of a successful team?
 

Join the Team
 

Baker Hughes has a new opportunity for Program Manager - EVM & Compliance to join the team in India
 

Partner with the best
 

As a Program Manager-EVM & Compliance, you'll be responsible for operational and hands-on cybersecurity compliance to reduce risk for Baker Hughes. Enterprise Vulnerability Management (EVM) standards for products in the Oilfield Services and Equipment Digital (OFSED) business segment. It includes liaising with other functions across Baker Hughes, as well as engagement with suppliers and some engagement with external customers.

As a As a Program Manager-EVM & Compliance, you will be responsible for:
 

  • Acting as hands-on, lead liaison for EVM monitoring and remediation efforts of OFSE Digital products:
    • Working closely with technical product and operations teams to analyze reporting from central tools; recommend mitigations and ensure remediation plans are documented.
    • Communicating with leadership at all levels on progress and required support
    • Driving a proactive culture to reduce risk of missed SLAs for vulnerability remediation.
    • Collaborating closely with IT function and gain deep understanding of the tools used to track EVM (e.g. Brinqa, Qualys, ServiceNow CMDB, Archer, etc.)
    • Employ experience gained in technical roles to translate EVM language into actionable activities for product teams

  • Participating in day-to-day operations of a mature Information Security management System (ISMS) that is certified to ISO 27001 (to include objectives, key processes, and management of appropriate tools):

  • Acting as primary owner of periodic information security control operation using data gathered from various technical sources, including following up to remediate control failures and education campaigns
  • Monitoring and Measuring of the ISMS program – assembling and maintaining dashboards and metrics
  • Making use of available compliance reporting and automation from cloud hosted application environments to reduce manual compliance reporting efforts
  • Contributing to ISMS policy and key processes as needed


Fuel your passion
 

To be successful in this role you will:

  • Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math). Bachelor’s degree from another field combined with role-related work experience is also accepted.
  • 5- 10 years of experience and proven track record in a technical compliance role, preferably supporting business critical customer-facing applications / products such as commercial SaaS solutions
  • 5-10 years of experience in compliance control testing, including authoring, operating, and continuous improvement of controls.
  • 5-10 years of work with software vulnerability management identification and remediation; familiarity with associated tools in this discipline
  • Hands-on experience in software development, including implementation of short-term mitigations of vulnerabilities while full fixes are within a backlog
  • Have knowledge of Brinqa, Qualys, ServiceNow CMDB or Archer
  • 5-10 years of experience with Windows and Linux server/workstation environments (configuration, install, maintenance)
  • Ability to design and execute software obsolescence management strategies in an OT environment.
  • Fundamental understanding of software development lifecycle (SDLC) methodologies
  • Exceptional capability in leading others through influencing
  • Ability to work across highly matrixed organizational functions to accomplish cohesive goals
  • Superb capability to adapt when a rapid change in critical priorities occurs
  • Outstanding written and verbal communication skills in English, including tailoring messaging to each level of the organization (Subject Matter Experts, Managers, and Executives)
  • U.S. morning working hours required. Adaptable to facilitate occasional off-hours meetings to accommodate our global team.


 


Work in a way that works for you
 

We recognize that everyone is different and that the way in which people want to work and deliver at their best is different for everyone too. In this role, we can offer the following flexible working patterns:
 

  • Working flexible hours - flexing the times when you work in the day to help you fit everything in and work when you are the most productive


Working with us
 

Our people are at the heart of what we do at Baker Hughes. We know we are better when all of our people are developed, engaged and able to bring their whole authentic selves to work. We invest in the health and well-being of our workforce, train and reward talent and develop leaders at all levels to bring out the best in each other.
 

Working for you
 

Our inventions have revolutionized energy for over a century. But to keep going forward tomorrow, we know we have to push the boundaries today. We prioritize rewarding those who embrace change with a package that reflects how much we value their input. Join us, and you can expect:
 

  • Contemporary work-life balance policies and wellbeing activities
  • Comprehensive private medical care options
  • Safety net of life insurance and disability programs
  • Tailored financial programs
  • Additional elected or voluntary benefits

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  12  2  0

Tags: Automation Cloud Compliance Computer Science ISMS ISO 27001 Linux Monitoring Qualys SaaS SDLC SLAs STEM Vulnerabilities Vulnerability management Windows

Perks/benefits: Flex hours Health care Insurance

Region: Asia/Pacific
Country: India

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.