Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

IT Security Specialist - Security Operations Center (SOC)

Murphy Oil

Job Summary Murphy Oil Corporation is looking for an IT Security Specialist to support our growing Global Cybersecurity team. The ideal candidate is an experienced and dynamic individual who will serve as the lead for our Security Operations Center (SOC) function. This critical role involves overseeing the detection and response to cyber incidents, managing daily SOC operations, maturing the SOC capability, leading and mentoring specialists, and supporting our expanding Global Cybersecurity team. Given Murphy's oil and gas operations, this role also carries awareness‑level accountability for operational technology (OT) and industrial control system (ICS) cybersecurity risk, working in coordination with OT/OT Security teams. The right candidate is passionate about learning and exploring new areas, keeping up with breaking cyber security incidents/events/vulnerabilities/best practices, designing solutions, and working with stakeholders in the business, internal IT, Operations, and 3rd party service providers, to securely enable the business. The IT Security Specialist will work in our Houston Corporate office and may work two (2) days a week remote. Responsibilities Contribute to cybersecurity vision, roadmap, and execution plan Lead and mature the enterprise incident response process including updating the plan, documenting playbooks, facilitating cyber drills, coordinating with Incident Response vendors, setting up alternate communication channels, implementing automation in IR process to reduce response time, etc. Respond immediately to any security‑related incidents (e.g., data breaches, viruses, phishing scams) and perform/lead cyber incident triage, including determining scope, urgency, potential impact, and materiality, identifying the specific vulnerability, and making recommendations that enable expeditious remediation. Oversee the day‑to‑day operational support of the SOC, including leading the weekly SOC Incident review meetings, handling and prioritizing help desk tickets, incidents, and cases. This role maintains direct oversight of the cyber service desk queue and is accountable for queue hygiene, SLA reporting, and driving corrective action when SLA targets are missed. Oversee On‑Call support capability and provide On‑Call support ensuring timely response in remediating critical incidents after hours and weekends. This role owns the on‑call support function end‑to‑end: maintaining a current on‑call schedule, ensuring all on‑call personnel understand their roles and escalation paths, monitoring that after‑hours and weekend incidents are acknowledged and responded to within defined SLAs, and conducting post‑incident reviews when response timeliness falls short of expectations. Collaborate with service desk and infrastructure teams to deploy critical security patches in a timely manner, formalize vulnerability management program and introduce automation. Collaborate with the Head of IT Security to implement security architecture best practices within incident response and daily SOC activities Support the Head of IT Security by providing leadership and guidance to the cybersecurity team in managing day‑to‑day operations and responding to incidents. Establish scoring and grading metrics to measure effectiveness of the SOC Establish relationships between the incident response team and other groups, both internal (e.g., legal department) and external (e.g., law enforcement agencies, vendors, public relations professionals) Keep current with latest cyber security developments, threat intel, attack methods, emerging tools/technologies/strategies, and disseminate across IT Lead special projects as assigned Oversee SIEM use case development and alert tuning in partnership with the managed SOC/MDR provider; identify automation opportunities and work to eliminate false positive noise and detection gaps. Lead proactive threat hunting activities, either directly or through coordination with the MDR partner, to identify threats that evade automated detection; document findings and translate results into new detection logic. Develop, schedule, and facilitate cybersecurity tabletop exercises and simulations for SOC staff, IT leadership, legal, and relevant business stakeholders; track findings and drive remediation of identified process gaps. Define, track, and report on SOC key performance indicators (KPIs) and security metrics dashboards for IT leadership and executive audiences, including mean time to detect (MTTD), mean time to respond (MTTR), and vulnerability remediation SLA compliance. Oversee application security coordination responsibilities within the vulnerability management program: track findings from DAST/SAST scans and penetration tests, partner with development and IT teams to prioritize and remediate application‑layer vulnerabilities. Licenses/ Certifications CISSP, GCIH or GCFA certification Preferred for oil and gas sector: GICSP (Global Industrial Cyber Security Professional) or IC/OT security certification (e.g., CSSA, ISA/IEC 62443 certificate) Qualifications/Requirements Bachelor's degree in cyber security, Computer Science, or a related Information Technology field Minimum 15 years' experience in cyber security with 2 years' experience in working in a Security Operations Center (SOC) Hands‑on experience investigating (potential) security incidents including analyzing high volumes of logs, network data and other attack artifacts Hands‑on experience documenting Incident Response plans, playbooks and SOPs in line with security best practice standards such as NIST, SANS, etc. Knowledge of incident categories, incident responses, and timelines for responses Knowledge of security best practice standards such as NIST CSF, NIST 800‑53, ISO 27001, etc. Familiarity with a standardized incident response framework (SANS/NIST) Knowledge of different classes of attacks (e.g., passive, active, insider, distribution attacks) Knowledge of cyberattack vectors and stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, etc.) Knowledge of penetration testing principles, tools, and techniques Knowledge of the basics of network security (e.g., encryption, firewalls, authentication, honeypots, perimeter protection) Knowledge of Cyber Kill Chain methodology, and/or MITRE ATT&CK framework Able to manage multiple projects and initiatives concurrently Ability to work independently and with others Highly organized with strong time‑management skills Basic awareness of operational technology (OT) / industrial control system (ICS) security concepts, including the difference between IT and OT threat models and the applicability of standards such as NIST 800‑82 or ISA/IEC 62443 Desired/Preferred Qualifications Minimum 2 years' experience working in a managed SOC environment Experience leading a SOC (with both onshore and offshore resources) Hands‑on cyber incident response experience including prior experience responding to large scale incidents such as a Ransomware attack, supply chain attack, or data breach Experience with industry leading SIEM platforms such as Google Chronicle SIEM, Azure Sentinel Strong experience with Microsoft 365 Defender suite (Defender for Identity, O365, Endpoints, Cloud App Security, Conditional Access), Azure Defender suite (Defender for Cloud, Servers, App Service, Storage, SQL, Kubernetes, Resource Manager, IoT, Key Vault), Microsoft Purview Compliance Manager, and Intune Experience deploying Security Orchestration, Automation and Response (SOAR) Solutions Experience in writing scripts (e.g., PowerShell, PERL, Python, KQL, VBS) to perform tasks like parsing large data files, automating manual tasks, and fetching/processing data Experience working within Oil/Gas industry Knowledge of network security implementations (e.g., host‑based IDS, IPS, access control lists), including their function and placement in a network Knowledge of system administration, network, and operating system hardening techniques Experience with proactive threat hunting methodologies and tools (e.g., hypothesis‑driven hunting using MITRE ATT&CK, behavioral analytics, or TIP platforms); ability to translate threat intelligence into actionable hunting campaigns Hands‑on experience with detection engineering: writing and tuning SIEM detection rules, developing SOAR playbooks, and reducing alert fatigue through use case optimization Experience with OT/ICS cybersecurity environments in oil and gas, energy, or critical infrastructure; familiarity with Purdue Model, OT network segmentation, or SCADA security concepts is a plus Experience defining and reporting on SOC performance metrics (MTTD, MTTR, SLA adherence, false positive rate) to IT leadership and executive stakeholders The individual is required to follow all applicable safety precautions. Work is performed almost entirely in a controlled (i.e., inside) environment and does not typically subject the incumbent to any hazardous/extreme elements; some positions may require regularly moving or transporting items weighing up to 25 lbs. around the office for various needs. The successful candidate must be able to complete all essential physical requirements of the job with or without reasonable accommodation. Murphy Oil Corporation participates in the Department of Homeland Security U.S. Citizenship and Immigration Services' E-Verify program. Please read the E-Verify Notice-English / E-Verify Notice-Spanish and Right to Work Notice before proceeding with your job application. Murphy Oil Corporation is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, pregnancy, genetic information, disability, and status as a protected veteran, or any other category protected by federal, state or local laws. EEO is the Law Poster EEO is the Law Supplement #J-18808-Ljbffr Murphy Oil

Vacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the IT Security Specialist - Security Operations Center (SOC) in Houston, TX vacancy
  • Job Summary Cyber SOC Analyst II - Email & Endpoint Security is a member of the Cyber Security Operations Center (CSOC) team responsible for protecting CenterPoint Energy's users, email...  ...action. Education Bachelor’s degree in an IT‑related field, or equivalent education and... 
    Suggested
    Full time
    For contractors
    Work experience placement
    For subcontractor
    Flexible hours

    Center Gas

    Houston, TX
    15 hours ago
  • Murphy Oil Corporation is seeking an IT Security Specialist to join our Houston office. This vital role will lead our Security Operations Center function, overseeing detection and response to cyber incidents while mentoring specialists. The ideal candidate will have extensive... 
    Suggested
    Work at office
    2 days per week

    Murphy Oil Corporation

    Houston, TX
    4 days ago
  • $155k - $175k

     ...within the Qualys Risk Operations Center (ROC), you will...  ...risks across complex IT and cloud environments...  ...Experience working in a SOC, MSSP, or cyber advisory...  ...Interest in learning cloud security (AWS, Azure, GCP)....  ...GCIA, GMON, Qualys VMDR Specialist) a plus. The salary range... 
    Suggested

    Qualys

    Houston, TX
    1 day ago
  • Product Security Architect - Modular Data Center (Hybrid - Houston, TX) Travel: 10% About Submer Submer designs...  ...through deployment and operation—in a fast‑paced, high‑growth environment...  ...compliance frameworks such as NIST, ISO, SOC 2, or IEC 62443. Hands‑on experience... 
    Suggested
    Work experience placement

    Submer - Datacenters That Make Sense

    Houston, TX
    4 days ago
  •  ...motivated Senior Software Engineer, Security Engineering to design, build, and operate security across Bot Auto’s...  ...public cloud (AWS), on‑prem data centers, CI/CD pipelines, and internal developer...  ...e.g., ISO/SAE 21434, NIST, OWASP, SOC 2) Experience with threat modeling... 
    Suggested

    Bot Auto

    Houston, TX
    1 day ago
  •  ...Cybersecurity Analyst to support a major oil and gas client in Downtown Houston. The role is fully onsite and involves hands-on work across security monitoring, incident response, and forensic analysis. You will review threat intelligence, triage tickets, monitor Elastic SIEM,... 

    Insight Global

    Houston, TX
    1 day ago
  • $104.5k - $213.8k

     ...and recommendations that enhance the client's security posture and compliance efforts. What You'll Do...  ...executing internal audits across cybersecurity and IT infrastructure domains, including: Security Operations Centers (SOC) Data Services and Data Governance Third Party... 
    Local area

    Crowe

    Houston, TX
    1 day ago
  •  ...Are you passionate about securing modern cloud environments and building...  ...to join a collaborative IT and cybersecurity team where your...  ...architecture, threat prevention, and operational resilience. If you enjoy...  ...policies aligned with NIST, SOC 2, and CIS standards Driving data... 
    Night shift
    Weekend work
    Afternoon shift

    Heath Service Inc

    Houston, TX
    3 days ago
  •  ...Analyst is responsible for contributing to a successful 24x7 Network Operations Center to ensure the availability, stability, and performance of enterprise IT services across network, systems, security, and data center environments. This role highly requires exceptional... 
    Full time
    Temporary work
    Local area
    Night shift

    Foxconn Industrial Internet - FII

    Houston, TX
    1 day ago
  •  ...responsible for setting the strategic and technical direction for cyber security across the Cyber Threat and Engineering (CTE) portfolio. This...  ...and reference architectures that guide the secure design and operation of CTE platforms, products, and services. The team also leads... 

    La Fosse

    Houston, TX
    3 days ago
  • $51 - $56 per hour

    IT Server Operations Analyst Houston, TX (100% on-site) Duration: initial 6-month contract (W2, not eligible for C2C) Pay: $51-56/hr We are...  ...IT Server Operations Analyst to join our Network Operations Center (NOC) team. This role is ideal for an IT professional who... 
    Contract work
    Shift work
    Night shift
    Rotating shift

    Hydrogen UK Ltd

    Houston, TX
    2 days ago
  • $134.6k - $184.5k

     ...partners by providing advanced architecture, implementation and operational support. Acts as overall industry leaders and leaders of...  ...business requirements and how those requirements translate into security features and functionality. Assist with development of... 
    Work experience placement
    Local area
    Remote work
    Work from home

    Optiv

    Houston, TX
    1 day ago
  •  ...This role is focused on managing and implementing IT security solutions, including identity access management using tools like Okta,...  ...identity access management using Okta. Oversee daily security operations, ensuring the organization’s security posture is maintained and... 

    VC5 Consulting

    Houston, TX
    3 days ago
  •  ...Cybersecurity Assessments And Exercises Vice President Drive the security of critical banking applications and platforms through hands-...  ..., and Skills Knowledge of cybersecurity practices, operational risk management, and incident response methodologies within... 

    Chase

    Houston, TX
    1 day ago
  • Submer is seeking a highly skilled Product Security Architect to lead the security strategy across our modular data center product portfolio. You'll define and implement product security architecture while collaborating with cross-functional teams to ensure compliance with... 
    Remote job

    Submer

    Houston, TX
    4 days ago
  • Submer - Datacenters That Make Sense is looking for a skilled Product Security Architect to manage security across our modular data center portfolio. This hybrid role based in Houston, TX, aims to ensure security is embedded throughout the entire lifecycle of the product... 

    Submer - Datacenters That Make Sense

    Houston, TX
    4 days ago
  • A leading consulting firm in Houston is seeking a skilled Network Engineer to design, implement, and optimize network infrastructure. The role demands expertise in routing protocols and hands-on experience with network equipment including routers and firewalls. Ideal candidates...
    Full time

    Attractivate Consulting Solutions

    Houston, TX
    4 days ago
  • $61.9k - $141k

     ...Job Number: R0243938 Information System Security Officer The Opportunity: Cyber threats are everywhere, and the constantly evolving...  ...you. We need your knowledge as an information security risk specialist to help break down complex threats into manageable plans of... 
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    Booz Allen Hamilton

    Houston, TX
    3 days ago
  • La Fosse is seeking a cybersecurity expert to define and maintain security strategies for the Cyber Threat and Engineering portfolio. Responsibilities include setting architecture standards, guiding design security, and leading innovation efforts. The ideal candidate will... 

    La Fosse

    Houston, TX
    4 days ago
  • First Citizens Bank is seeking a talented Pentester responsible for ensuring the technological security of the Bank’s systems. The role involves planning and executing penetration tests on applications, managing vendor testing, and documenting technical results for stakeholders... 
    Remote job

    First Citizens Bank

    Houston, TX
    4 days ago
  • An IT consulting firm is seeking an experienced Penetration Tester for project-based security assessments. The role involves identifying and exploiting vulnerabilities across network and application environments. Candidates should have proven experience with penetration... 
    Remote job
    Contract work

    Silpa Consulting LLC

    Houston, TX
    4 days ago
  • First Citizens Bank is seeking an IAM Administrator to provide SailPoint IIQ administration, support, and security oversight. The role focuses on identity lifecycle, RBAC, least privilege, and proactive access monitoring across AD, LDAP, SSO, and MFA. You will maintain... 
    Remote job

    First Citizens Bank

    Houston, TX
    4 days ago
  •  ...Administrator/Engineer in Houston, Texas. The candidate will manage a multi-tenant Microsoft 365 environment and ensure security, compliance, and operational support. Key qualifications include 5+ years of experience with Microsoft 365, advanced knowledge of Exchange Online... 
    Flexible hours

    U.S. Physical Therapy

    Houston, TX
    3 days ago
  • Meriplex Communications LTD is looking for a Strategic Solutions Consultant based in Houston, Texas. In this role, you will help drive strategic technology initiatives and whitespace growth within existing client accounts, collaborating closely with various teams to identify...

    Meriplex Communications LTD

    Houston, TX
    15 hours ago
  •  ...hiring a Building Technology Systems Senior Consultant in Houston, Texas. The role focuses on designing structured cabling systems, security, and audiovisual systems for the K-12 and higher education markets. Ideal candidates will have a four-year engineering degree, 5-7... 

    WSP in the U.S.

    Houston, TX
    4 days ago
  •  ...National Bank is seeking a Cybersecurity Engineer Senior to manage internet proxy and filtering. The role requires collaboration with security teams and is essential for maintaining internet access functionality. The ideal candidate should have over 3 years of experience... 

    Huntington National Bank

    Houston, TX
    1 day ago
  • $50 per hour

     ...established cybersecurity team focused on protecting and maintaining secure operations across the organization. This role is fully onsite and...  ...Requirements 2+ years of hands on cybersecurity experience within a SOC or security operations environment Strong experience working... 

    Insight Global

    Houston, TX
    1 day ago
  • The Jupiter Group, Inc is searching for a Network Operations Specialist to work in their Network Operations Center in NW Houston. The successful candidate will provide comprehensive support for network operations, including monitoring Cisco infrastructure and Microsoft... 
    Flexible hours
    Night shift
    Weekend work

    The Jupiter Group, Inc

    Houston, TX
    4 days ago
  •  ...top corporations in the data center, chemical, food & beverage, pulp...  ...ensure scalable, disciplined operations across the organization. This...  ...Operations, Finance, Engineering, and IT to define system standards,...  ...configuration, data quality, security, and change management to... 
    Worldwide

    Panelmatic

    Houston, TX
    3 days ago
  •  ...critical infrastructure and requires the ability to maintain the security or integrity of the University infrastructure. This position...  ...user's needs and implements solutions. Analyzes and debugs operating system components. Anticipates future needs in computing resources... 

    University Of Houston

    Houston, TX
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to IT Security Specialist - Security Operations Center (SOC). Be the first to apply!