We are an energy company. We explore, develop and produce oil and natural gas. We are 4 geographies, 49 nationalities and more than 6.000 experiences waiting to be shared. Working at Galp is about bringing more energy to the world. It is having the ambition to build the future in a sector that is going through a deep transformation. It is being part of a team who believes that, together, we can go further.

We value and encourage our people to boost their progress through continuous improvement and innovation, promoting opportunities in different business areas and geographies.

We are looking for people with strength, passion, determination and vision to be part of our growth. Will you accept the challenge?

 

 

 

Head of Cyber Risk Management

 

Mission:

The Head of Cyber Risk Management will direct a team responsible for supporting the business in managing their Cyber Risk. Reporting to the CISO, she/he will ensure the group follows a pragmatic approach into identifying, mitigating and resolving Cyber Risks in the Business Units or within their suppliers. 

 

 

The role:

  • Work closely with the CISO, the Head of Cyber Security (CIDO office), DPO and all relevant business functions, to ensure an holistic approach to managing security incidents;
  • Lead Cyber Risk personnel in the refinement of effective Cyber Risk Management process;
  • Lead the group’s Third-Party Risk Management program;
  • Provide metrics and visibility into the current security posture of the organization Cyber Risk;
  • Coordinate the Cyber Risk Management capability and escalate critical risks to the group’s CISO;
  • Represent the team and department both internally and externally as SPOC for all Cyber Risk Management matters;
  • Participate in proof of concepts and other technical evaluations of technologies, designs and solutions in centre of excellence (CoE) philosophy.

 

What we are looking for:

  • Degree in in Computer Engineering (or similar);
  • Relevant professional certifications such as SABSA, CISSP, CRISK will be a plus;
  • 7 to 10 years experience in Cyber Security area;
  • Hands-on experience in implementing cyber risk management programs and/or NIST Cybersecurity Framework, ISO 27002/5/19 and PCI-DSS assessments will be a plus;
  • Digital native and emerging technologies understanding;
  • Pragmatic approach in identifying, mitigating and resolving risks
  • Inspirational leadership and strong interpersonal skills that promote effective partnerships and drive impact;
  • Result orientated and problem-solving skills;
  • Resilient and “Can do” attitude;
  • Fluent in English.

 

Deadline for application
November 13th, 2019

 

 

Diversity Commitment

At Galp, we promote equality of opportunity and treatment of people regardless of gender, religion or belief, disability, age, sexual orientation, and race. We believe that equality creates value and strengthens a Group culture.

Ingressei na Galp/Petrogal em 2014 e desde então tenho trabalhado com os ativos de Potiguar offshore. No segundo ano de empresa, também me tornei TCR destes ativos e pude compreender um pouco mais além da área técnica. Têm sido anos de intenso aprendizado, com reuniões, horas em frente a estação de trabalho, acompanhamento de poços e por vezes participação de outros projetos, como avaliação de outros activos, o que me deixa muito feliz em ter a possibilidade de ver novas áreas, geologia diferente e talvez a possibilidade de ajudar a empresa a aumentar seu portfólio com boas oportunidades… Concomitantemente, ao meu crescimento profissional, vivenciei a mudança da presidência da empresa, da sede para o Rio de Janeiro, dos valores e da missão. Foram anos de cursos, muito trabalho, aprendizado e acompanhamento para se adequar a nova forma de trabalho. Dentre os pontos positivos de trabalhar na Galp/Petrogal, destaco o bom tratamento com os colaboradores, sempre humanizado e com a compreensão que em certos momentos da vida são necessários, a parceria entre os colegas, reconhecimento do trabalho executado e sólido portfólio. Ainda sobre a relação com os colegas, posso dizer que na maior parte das vezes é colaborativa, sempre há alguém disposto a te ajudar com uma boa ideia ou sentar ao seu lado para discutir um problema de modo a saná-lo.

Patricia Takayama