Share this Job
Apply now »

Sr. Network Security Architect

Company Name:  Lyondell Chemical Company

Houston, TX, US, 77010

Req ID:  72709
Facility:  One Houston Center-130
Department:  Security Engineering
Division:  Global Business Services

LyondellBasell (NYSE: LYB) is one of the world’s largest plastics, chemical and refining companies and a member of the S&P 500. LyondellBasell ( manufactures products at 55 sites in 17 countries.  LyondellBasell products and technologies are used to make items that improve the quality of life for people around the world including; packaging, electronics, automotive parts, home furnishings, construction materials and biofuels.

Basic Function

We are looking for an inspirational and effective leader who will deliver on the relentless execution of our global strategy to enable this company to achieve our digital transformation goals. This role will be a member of the Security Architecture team and the Subject Matter Expert (SME) for network security architecture.  They will work with the latest technologies and products we have in place to protect our networks as well as architect the new security solutions necessary to support our digital journey.  This role will evaluate new security technologies to better improve efficiencies, security posture and meet business objectives, as well as support a secure global architecture including network technology solutions for both Information Technology (IT) and Operational Technology (OT).


Travel: 10%

Roles & Responsibilities
  • Serve as a Subject Matter Expert (SME) for network security solutions
  • Create and maintain detailed information security roadmaps, architectures, and programs to significantly improve the overall security posture of the organization
  • Develop, implement and assess network security policies, plans, and procedures, including security architectures, firewall policies, intrusion detection systems and security data collection systems to help internal customers design and implement secure solutions
  • Investigate, design, and architect specific cybersecurity boundary/endpoint controls and security reference architectures specific to LYB services portfolio
  • Conduct periodic architectural reviews to assess effectiveness and propose optimal alternatives as required; audit and review effectiveness of existing network controls
  • Lead technical evaluations, security analysis, and risk assessments
  • Work with business teams, vendors and service providers to define security and business requirements and understand existing and emerging security threats, security frameworks, regulations, and methods of mitigation
  • Research, specify, and develop new tools, processes and techniques to improve vulnerability analysis, forensics capabilities, network and data security, and threat management
  • Provide Level 3 technical support to resolve network security problems.
  • Research and develop defensive cybersecurity data strategies 
  • Recognize and deal appropriately with confidential and sensitive information
  • Establish effective working relationships with operational stakeholders to help execute our business strategy
Min. Qualifications
  • Bachelor of Science degree in a technical discipline
  • 8+ years of progressive experience in a Network or Security Architecture role, designing and implementing network security solution
  • Certified Information Systems Security Professional (CISSP), Security+, CCNA Security, or equivalent certification
  • Experience architecting complex systems, including operating systems, networks, firewalls, and load balancers
  • Experience with network architecture within OT environments
  • Experience with Next-Generation Firewalls (NGFW) and IDS/IPS 
  • Knowledge of advanced cyber threats, threat intelligence, and adversary methods
  • Strong knowledge of TCP/IP networking and the OSI 7-layer model including DHCP, DNS, NTP, SMTP, etc.
  • Strategic planning and project management skills
  • Security experience with LAN, WAN, SD-WAN, and VPN networks
  • Excellent written and verbal communication skills with the ability to articulate both technical and abstract concepts in a clear and concise manner
  • Excellent interpersonal skills and ability to create collaborative relationships.
  • Strong customer focus.
  • Experience with multifactor authentication methods and standards, encryption protocols (i.e., SSL/TLS) and algorithms (RSA, AES, etc.)
  • 3+ years in a technical leadership role
Preferred Qualifications
  • Master’s degree in an IT related field
  • Cisco Certified Internetwork Expert (CCIE) Security certification
  • The Open Group Architecture Framework (TOGAF) certification
  • Experience in the Manufacturing, Petrochemical or Oil and Gas Industries
  • Experience with cloud security strategy 
  • Proficiency with NextGen security tools at scale for an enterprise environment (e.g. EPP, EDR, anti-malware, MDM, VPN)
  • Strong technical expertise in Firewalls (Cisco and Palo Alto preferred), Incident Response and Remediation, Security Information and Event Management (SIEM), Packet decoding and analysis, Web Proxy Servers, SSL VPN and other Remote Access Solutions, wireless Security (RF, 802.11, HART, Bluetooth, etc.), or firmware/embedded platform Security
  • Private sector security clearance
Builds effective teams
Cultivates innovation
Customer focus
Demonstrates courage
Drives results
Ensures accountability
Instills trust and exemplifies integrity

Must be at least 18 years of age and must be legally authorized to work in the United States (US) on a permanent basis without visa sponsorship.

LyondellBasell does not accept or retain unsolicited résumés or phone calls and/or respond to them or to any third party representing job seekers.

LyondellBasell is an equal opportunity employer.  We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, veteran status, and other protected characteristics.  The US EEO is the Law poster is available here.

Nearest Major Market: Houston

Apply now »