Chevron Jobs

chevron mobile logo

Job Information

Chevron Corporation Application Security Consultant in Buenos Aires, Argentina

This is a position only for Buenos Aires, Argentina

Chevron is accepting online applications for the position of SES Application Security Consultant located in Buenos Aires, Argentina


This position must apply a range of both technical (.Net, Web Services, Oracle, SQL and/or Java) and process skills to provide enterprise-wide support of Chevron’s Application Security requirements.

Responsibilities for this position may include but are not limited to :

  • Ensure the enterprise is following application security requirements and principles, secure coding standards and best practices. Maintain secure coding guidelines.

  • Develop an in-depth understanding of where our scanning and vulnerability date resides, how to access and integrate it to develop measures and deliver trending analysis and better visibility into the state of application security. This will require driving solution delivery from one of our tool providers.

  • Provide operational support for Application Security technologies (HP Fortify), and consulting for remediation of application security issues.

  • Support and evolve the inclusion of appropriate application security clauses in Chevron contracts (working with Procurement and Legal).

  • Contribute to the evolution of application security maturity expectations and OC for the enterprise; measure CVX app security maturity; maintain relationship(s) with app security training provider and consult on content development.

  • Active leadership and participation in the Application Security Technical Network (ASTN) and Software Engineering Community of Practice; connect to other CoPs.

  • Stay current on application security and associated cross-functional issues.

Special considerations:

  • 3+ years of experience in designing and developing applications and knowledge in some of the following technologies: Microsoft Development Technology stack (e.g.: .NET, SCM, MVC, WCF; SOA); Java-based technology, Workflow and reporting technologies; Database technologies such as Oracle and SQL Server;

Selection criteria :

  • Communication skills: Strong communication and presentation skills including the ability to interface across the IT function, and with business partners and external parties globally.

  • Teamwork: Ability to work independently and in alignment with team goals

  • Critical thinking and problem solving: Ability to prioritize work. Combine technical expertise, theoretical knowledge and creativity to resolve issues and concerns.

  • Learning agility: Motivation and ability to learn new technologies quickly. Embrace and adapts to change; adept of learning by doing

  • Technical depth and breadth

  • Knowledge of at least one development language (E.g ASP, C/C++, .Net, Java, Cobol, Javascript, PHP, Python, T-SQL)

  • High level comprehension of various development paradigms such as Object Oriented Programming, Web-Oriented Architecture, etc.

  • Plus to have experience with the DevSecOps (CI/CD Pipeline) approach, and Agile Methodology

  • Plus to have a high level understanding of industry standard lists of vulnerabilities (i.e. OWASP Top 10, SANS 25, cve.mitre, NIST, etc.)

Development Opportunities :

  • Ability to influence the IT function and reduce risk across the Enterprise.

  • Ability to build standard operating procedures and processes.

  • Strengthen ability to mitigate vulnerabilities in OWASP Top 10 and knowledge of other industry standard vulnerability lists (i.e. SANS 25, cve.mitre, NIST, etc.).

  • Strengthen ability to access and integrate data to develop measures, deliver trending analysis and better visibility into the state of application security.

  • Provide leadership and direction on the use of current and emerging technologies, with emphasis on application security and software engineering, based on best practices and standards relevant to Chevron.

This is a position only for Buenos Aires, Argentina