Application Controls Security Principal

LyondellBasell NYSE LYB As a leader in the global chemical industry LyondellBasell strives every day to be the safest best operated and most valued company in our industry The company s products materials and technologies are advancing sustainable solutions for food safety access to clean water healthcare and fuel efficiency in more than 100 international markets LyondellBasell places high priority on diversity equity and inclusion and is Advancing Good with an emphasis on our planet the communities where we operate and our future workforce The company takes great pride in its world-class technology and customer focus LyondellBasell has stepped up its circularity and climate ambitions and actions to address the global challenges of plastic waste and decarbonization For more information please visit or follow on LinkedIn Basic FunctionAn Application Controls Principal plays a vital role in managing the complex organization execution and optimization of the organization s SAP and non-SAP security controls An Application Controls Principal must lead a team that has primary responsibility for end-to-end controls monitoring validation quality assurance and improvement activities In addition to the Application Controls Principal leading a dedicated IT Operations-based team this role must act as a primary point of contact for all IT controls activities and be accountable to the Internal Controls Governance Risk Compliance Audit departments and Senior Leadership This role will develop long-term strategies in partnership with Control Owners for controls execution and prioritize the team s activities to ensure zero deficiencies in internal and external testing scenarios This role will have ultimate responsibility for the remediation of areas of risk and is responsible for communicating status of IT controls audit findings remediation efforts and long-term plans to senior leadership on a recurring basis This role requires intensive collaboration to ensure successful execution of all continuous and periodic control activities Roles Responsibilities Accountable for the IT controls program direction and influence including overarching IT controls approach defining controls rewriting as necessary launching renewed IT controls execution etc Accountable for aligning non-SAP and SAP controls approach harmonizing control automations process efficiencies and overall controls simplicity Accountable for all IT controls activities including monitoring validation quality assurance and improvement activities Champion adoption of comprehensive application security processes procedures and guidelines ensuring adherence to security best practices Oversee the development of systems and integrations to drive greater automation and remove areas of human error Act as Subject Matter Expert on all IT controls with internal and external auditors during IT audits Regularly assess the program for effectiveness - continuously monitor defined metrics and indicators and quickly adapt to changing requirements Operationalize team activities to be able to scale with changing IT controls requirements additional SOx-relevant applications systems etc Prepare regular reports on team outcomes and initiatives for senior leadership or enterprise-wide distribution Review existing processes and product architectures for IT control security design gaps and vulnerabilities and consult with product teams and cyber security to remediate or mitigate cyber risk Provide strategic oversight to remediations proposed influencing the technical direction of IT controls improvements Provide strategic leadership and creative thinking to help various technical delivery teams through the project lifecycle Manage a team of resources who proactively monitor IT security controls data validation authorization encryption audit logging etc for key applications on-premises and cloud-based to identify weaknesses and potential vulnerabilities Organize competing priorities amongst security alerts and application security control deficiencies recommending and implementing corrective actions Min Qualifications Bachelor s degree in Information Technology Computer Science or a related field preferred 7 years of experience in IT security controls analysis IT audit or a similar role Expert knowledge of IT security controls and best practices data validation authorization encryption audit logging etc Proven experience in identifying analyzing and remediating non-SAP control deficiencies In-depth understanding of security concepts including authorization segregation of duties and user access review management Experience with tools such as ServiceNow or security tools and technologies used for control monitoring and analysis Understanding of cloud security concepts and technologies and on-prem technologies SOX knowledge in addition to experience of implementing auditing against US SOx IT framework control 3 years of experience supporting software security governance and compliance activities i e metrics assessments audits exercises risk frameworks and maturity models Experience leading a team of resources and prioritizing complex activities and outcomes Identity and Access Management exposure Application Security Principles and Best Practices exposure Security Tools and Technologies exposure Application cloud and on prem logic and data layer architecture inc SQL Oracle and Azure Desired Skills Experience with security automation tools and scripting languages e g Python PowerShell Experience with SharePoint and project management tools Familiarity with GAAP and financial reporting Soft Skills Prioritization of complex activities Process improvement mindset Clear and effective communication verbal and written Effective leadership and coordination Detailed and systematic thinking Detailed troubleshooting skills Issue resolution and risk mitigation Commitment to follow standards Preferred QualificationsCompetenciesBuild PartnershipsDeliver ResultsDrive InnovationGrow CapabilitiesPromote InclusionMotivational Cultural FitTechnical SkillsWe are LyondellBasell - a leader in the global chemical industry creating solutions for everyday sustainable living Through advanced technology and focused investments we are enabling a circular and low carbon economy Across all we do we aim to champion our employees and unlock value for customers investors and society LyondellBasell places high priority on diversity equity and inclusion and is strongly committed to our planet the communities where we operate and our future workforce As one of the world s largest producers of polymers and a leader in polyolefin technologies we develop manufacture and market high-quality and innovative products for applications ranging from sustainable transportation and food safety to clean water and quality healthcare For more information please visit or follow on LinkedIn