Job Description
Total Number of Openings
1
Develop and maintain the cybersecurity strategy, policies and risk management processes to ensure that the organization effectively secures Chevron’s operations.
The Senior IT Cybersecurity Engineer is responsible for the technical design of IT cybersecurity architectural guidelines and standards, as well as the secure implementation of IT digital technologies across platforms and product lines in Chevron. The primary responsibility is to assure IT solutions are "secure by design", with a high focus on delivering secure AI applications and digital capabilities.
**Key responsibilities:**
Responsibilities include but are not limited to:
+ Enable digital transformation by ensuring secure-by-design principles are incorporated in the IT digital capabilities across the enterprise.
+ Serve as a subject matter expert in AI security domain of Cybersecurity.
+ Prepare AI security research proposals and proofs of concept for emerging technologies
+ Define cybersecurity architectures for AI applications and solutions
+ Create SOPs and Checklists for AI assessments.
**Required Qualifications:**
+ Minimum 9 years related work experience in cybersecurity with increasing levels of responsibility.
+ 2 years of experience in AI security with end-to-end assessment of AI applications along with security of related components.
+ Specialized AI and machine learning knowledge, emphasizing secure development, threat detection for AI systems, and compliance with emerging AI regulations.
+ A strong understanding of machine learning algorithms, LLM Models, neural networks, deep learning, and frameworks/libraries
+ Familiarity with deploying and securing AI systems on major cloud platforms ( Azure, Google Cloud).
+ Technical experience in one or more cybersecurity domains i.e. Cloud Security, Application Security, Data Security, and Identity and Access Management.
+ General understanding of the cyber threat landscape
**Cybersecurity Implementation Expertise**
+ **OWASP Top 10 for LLMs** : Strong understanding of the OWASP Top 10 for LLMs and mitigation strategies. Enforce secure LLM practices across development teams through training, code reviews, and automated checks.
+ Ensure that AI systems comply with relevant global AI laws, data privacy regulations (like GDPR), and industry standards (such as the NIST AI Risk Management Framework).
+ Work with data science, engineering, and legal teams to integrate security best practices into the AI development lifecycle and address legal and ethical concerns (e.g., bias, transparency).
+ **Secure SDLC Integration** : Deep experience embedding security into every phase of the Software Development Lifecycle (SDLC)—from requirements gathering to deployment—ensuring compliance with organizational and regulatory standards.
+ **Threat Modeling & Attack Surface Analysis** : Conduct **threat modeling** sessions during design phases using frameworks like STRIDE and DFDs. Perform **attack surface analysis** to identify potential entry points and recommend design-level mitigations.
**Preferred Qualifications** :
**Preferred Education**
+ Bachelor’s degree or master’s degree in Cybersecurity, Information Technology, Information Systems, or Computer Science
+ Certifications in IT Cybersecurity are highly preferred (e.g., GISP, GREM, ISSEP, OSCP or other similar certification)
Chevron participates in E-Verify in certain locations as required by law.
Chevron Corporation is one of the world's leading integrated energy companies. Through its subsidiaries that conduct business worldwide, the company is involved in virtually every facet of the energy industry. Chevron explores for, produces and transports crude oil and natural gas; refines, markets and distributes transportation fuels and lubricants; manufactures and sells petrochemicals and additives; generates power; and develops and deploys technologies that enhance business value in every aspect of the company's operations. Chevron is based in Houston, Texas. More information about Chevron is available at www.chevron.com .
Chevron is an Equal Opportunity / Affirmative Action employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status, or other status protected by law or regulation.
1
Develop and maintain the cybersecurity strategy, policies and risk management processes to ensure that the organization effectively secures Chevron’s operations.
The Senior IT Cybersecurity Engineer is responsible for the technical design of IT cybersecurity architectural guidelines and standards, as well as the secure implementation of IT digital technologies across platforms and product lines in Chevron. The primary responsibility is to assure IT solutions are "secure by design", with a high focus on delivering secure AI applications and digital capabilities.
**Key responsibilities:**
Responsibilities include but are not limited to:
+ Enable digital transformation by ensuring secure-by-design principles are incorporated in the IT digital capabilities across the enterprise.
+ Serve as a subject matter expert in AI security domain of Cybersecurity.
+ Prepare AI security research proposals and proofs of concept for emerging technologies
+ Define cybersecurity architectures for AI applications and solutions
+ Create SOPs and Checklists for AI assessments.
**Required Qualifications:**
+ Minimum 9 years related work experience in cybersecurity with increasing levels of responsibility.
+ 2 years of experience in AI security with end-to-end assessment of AI applications along with security of related components.
+ Specialized AI and machine learning knowledge, emphasizing secure development, threat detection for AI systems, and compliance with emerging AI regulations.
+ A strong understanding of machine learning algorithms, LLM Models, neural networks, deep learning, and frameworks/libraries
+ Familiarity with deploying and securing AI systems on major cloud platforms ( Azure, Google Cloud).
+ Technical experience in one or more cybersecurity domains i.e. Cloud Security, Application Security, Data Security, and Identity and Access Management.
+ General understanding of the cyber threat landscape
**Cybersecurity Implementation Expertise**
+ **OWASP Top 10 for LLMs** : Strong understanding of the OWASP Top 10 for LLMs and mitigation strategies. Enforce secure LLM practices across development teams through training, code reviews, and automated checks.
+ Ensure that AI systems comply with relevant global AI laws, data privacy regulations (like GDPR), and industry standards (such as the NIST AI Risk Management Framework).
+ Work with data science, engineering, and legal teams to integrate security best practices into the AI development lifecycle and address legal and ethical concerns (e.g., bias, transparency).
+ **Secure SDLC Integration** : Deep experience embedding security into every phase of the Software Development Lifecycle (SDLC)—from requirements gathering to deployment—ensuring compliance with organizational and regulatory standards.
+ **Threat Modeling & Attack Surface Analysis** : Conduct **threat modeling** sessions during design phases using frameworks like STRIDE and DFDs. Perform **attack surface analysis** to identify potential entry points and recommend design-level mitigations.
**Preferred Qualifications** :
**Preferred Education**
+ Bachelor’s degree or master’s degree in Cybersecurity, Information Technology, Information Systems, or Computer Science
+ Certifications in IT Cybersecurity are highly preferred (e.g., GISP, GREM, ISSEP, OSCP or other similar certification)
Chevron participates in E-Verify in certain locations as required by law.
Chevron Corporation is one of the world's leading integrated energy companies. Through its subsidiaries that conduct business worldwide, the company is involved in virtually every facet of the energy industry. Chevron explores for, produces and transports crude oil and natural gas; refines, markets and distributes transportation fuels and lubricants; manufactures and sells petrochemicals and additives; generates power; and develops and deploys technologies that enhance business value in every aspect of the company's operations. Chevron is based in Houston, Texas. More information about Chevron is available at www.chevron.com .
Chevron is an Equal Opportunity / Affirmative Action employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status, or other status protected by law or regulation.
Apply for this Position
Ready to join ? Click the button below to submit your application.
Submit Application