Position SummaryThe Senior Cybersecurity Analyst plays a critical role in advancing Chord Energy’s cybersecurity posture by leading complex security initiatives, conducting in-depth threat analysis, and driving continuous improvement of security operations. This role serves as a technical expert and escalation point for security incidents, collaborates with cross-functional teams to implement advanced security controls, and ensures alignment with industry best practices and regulatory requirements. This position is located in downtown Houston. Level and salary commensurate with experience.Essential Job FunctionsLead advanced threat detection, analysis, and response efforts across corporate, SCADA, mobile, and cloud environmentsServe as a technical escalation point for complex security incidents and investigationsConduct proactive threat hunting and develop detection use cases in collaboration with SOC partnersDevelop and refine security playbooks, incident response procedures, and forensic analysis workflowsCollaborate with IT teams to integrate security into infrastructure and application designsEvaluate and recommend advanced security tools and technologies; contribute to budget planningLead risk assessments and penetration testing efforts, identifying vulnerabilities across environments and coordinating remediation in alignment with industry standardsAssess and coordinate risk of third-party technologies as they relate to Company IT systems and data (Software-as-a-Service, Infrastructure-as-a-Services, consulting, new software and hardware solutions, etc.)Develop and maintain security metrics and dashboards for executive reporting and continuous improvementSupport compliance efforts by aligning controls with SOX, NIST, and other regulatory frameworksMentor junior analysts and contribute to knowledge sharing within the security teamFacilitate collaborative security simulations and tabletop exercises designed to validate incident response, remediation, and recovery capabilities across IT systems and data environmentsDrive automation and orchestration of security operations, leveraging tools like SOAR, SIEM, and AI/ML-based threat detectionMaintain and enhance endpoint, network, and cloud security configurations and monitoringAssist in the development and enforcement of security policies, standards, and proceduresLead the company’s security awareness and training program, providing guidance to business units and conducting remedial education on secure practices as neededAbility to work in a fast-paced and fluid environment; flexible with the demands of a growing companyOn call rotationThis job description is not intended to be an all-inclusive list of duties and responsibilities of the position. Incumbents will be required to follow any other job-related instructions and duties outside of their normal responsibilities as assigned by their supervisor.Minimum QualificationsBachelor’s Degree in Information Security, Computer Science, or related field (or equivalent experience)8+ years of progressive experience in cybersecurity operations, including hands-on threat detection, incident response, vulnerability management, and security monitoringProven experience with cloud security (AWS, Azure, GCP), SCADA/IOT environments, and hybrid infrastructureDemonstrated experience conducting incident postmortems and root cause analysis for significant security events, with the ability to document findings and drive improvementsStrong knowledge of security technologies (SIEM, IDS/IPS, IAM, PKI, DLP, etc.)Demonstrated experience with enterprise-grade security platforms such as CrowdStrike Falcon and Microsoft Defender for Endpoint/SentinelExtensive experience working with managed detection and response (MDR) services like Arctic Wolf, including working with external SOC teams and interpreting threat intelligence reportsSolid understanding of regulatory frameworks (SOX, NIST, CIS, etc.)Proficient in scripting or automation (e.g., PowerShell, Python) for security operationsStrong knowledge of network architecture, firewalls, IDS/IPS, and secure coding practicesStrong analytical, communication, and documentation skillsProject leadership experience on security initiativesThe physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.Preferred Qualifications
Experience in upstream Oil & Gas environmentsUnderstanding of SCADA/IOT security principles and industrial control systemsFamiliarity with MITRE ATT&CK framework and threat intelligence platformsEEO Statement:Chord Energy does not discriminate in employment on the basis of race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factor.
