Roche fördert Diversität, Gleichstellung und Inklusion und repräsentiert die Gemeinschaften, denen wir dienen. Wenn es um die Gesundheitsversorgung auf globaler Ebene geht, ist Vielfalt eine wesentliche Zutat für den Erfolg. Wir glauben, dass Inklusion der Schlüssel zum Verständnis der unterschiedlichen Bedürfnisse der Menschen im Gesundheitsbereich ist. Gemeinsam engagieren wir uns für Individualität und teilen die Leidenschaft für eine herausragende Versorgung. Kommen Sie zu Roche, wo jede Stimme zählt.
Die PositionAs a Cloud Security Engineer, you will be part of the Information Systems Security team at Roche. We are a team of 40 engineers distributed across the globe with expertise in Cloud Security, Endpoint Protection, Network Security, Remote Access Management, etc.
In your day to day work, you will collaborate with a cross-functional product team to develop, operate and improve the platform and security capabilities needed to support the variety of solutions Roche is building in the Cloud. You will also work with the wider engineering team to bring solutions to challenges, while ensuring security is met at all times. You will work closely with the engineering teams to explain potential attack vectors and provide remediation recommendations.
Key responsibilities: Collaborate with the team to enhance the security features and engineering capabilities of the Roche Cloud Platform, including automated deployment pipelines, secure controls, and abstraction layers to facilitate Cloud adoption.Utilize coding skills to implement automated security solutions and reduce manual operations.Participate in all stages of the software development lifecycle, from gathering requirements and discussing with the Product Owner/Customer to implementing and deploying security features using CI/CD.Serve as a security consultant and advocate for the Roche Cloud Platform.Contribute to software security architecture and provide insights for propositions, product designs, and service enhancements.Apply standard security frameworks for gap analysis and collaborate with the platform team and customers for resolution.Work with engineering teams to enhance security across the platform.Engage with the broader Security teams to continuously improve data protection within the platform.Assist the team in making decisions regarding technologies, development patterns, automation frameworks, and new approaches to enhance security adoption in the future.What you bring: Required qualifications (Cloud, Security and Development): A minimum of 3 years of experience in security.A minimum of 3 years of experience in AWS Cloud.Hands-on experience with fundamental AWS cloud services such as networking, storage, database, and computing.Understanding of AWS security architecture design and the capability to develop reference implementations.Demonstrated hands-on experience in creating and implementing security features at a large scale in multi-tenant platforms using AWS native security services like GuardDuty, Security Hub, as Code etc.Understanding of the software development lifecycle, including CI/CD for deploying security mechanisms.Proficiency in Git, Terraform, and Python, and familiarity with Jenkins and Rundeck.Excellent collaboration skills and the ability to collaborate with engineering teams to improve security practices.Problem-solving and decision-making skills.Experience with agile methodologies.Nice to have: Familiarity with other clouds like GCP, Azure or Alicloud.Experience in data analysis and using insights to drive decision-making.Experience in reviewing code for quality and security compliance.Experience in performing penetration testing activities.Experience developing infrastructure as code that is fully tested: unit/functional/smoke tests using inspec/pytest or similar tooling.Mindset: Engineering skill set that is focused on security first philosophy.Passionate about Cloud Security and development.Inquisitive personality that's curious and has a keen interest in learning and improving.Highly motivated and proactive individual that looks for identifying ways of improvement and proposing new ideas.Wer wir sindBei Roche leisten 100,000 Menschen in 100 Ländern Pionierarbeit im Gesundheitswesen. Gemeinsam haben wir uns zu einem weltweit führenden, forschungsorientierten Healthcare-Konzern entwickelt. Unser Erfolg baut auf Innovation, Neugier und Vielfalt.
Roche ist ein Arbeitgeber, der die Chancengleichheit fördert.
#J-18808-Ljbffr