Specialist Information Security Engineer - Security Monitoring - United States
The Specialist Information Security Engineer plays a critical role in Information Security for Amgen and will lead or support assigned capabilities within Information Security with the focus on continuous security monitoring like Security Information and Event Management (SIEM), User and Entity Behaviour Analytics (UEBA), Logging, and others. The Information Security Engineer may also be assigned responsibilities for other Information Security capabilities. The Specialist Information Security Engineer is flexible to handle different technologies and solutions as they continually evolve or change.
The Specialist Information Security Engineer will work with various stakeholders at Amgen in a manner aligned to Amgen’s values to define and implement Information Security Services strategies, standards, tools and processes. This Security Engineer will also work with other Amgen teams like Security Operations on architecting, designing, and implementing technologies, processes, and other improvements in assigned Information Security capabilities. This will also include participation in on-call activities.
The Specialist Information Security Engineer will be a part of Amgen’s Information Security team and will be expected to contribute to and help deliver services and projects in other areas of information security.
This Specialist will be part of the Information Security team responsible for delivering security services across Amgen globally focusing on Information Security Technology and Engineering services and technologies but may support other areas like Risk Management, Security Operations and Incident Response. The Specialist is flexible in handling different and multiple technologies as the environment changes. Areas of responsibility include:
Management and implementation of technologies and processes relating to assigned Information Security capability including issue identification and resolution, integration with other tools, documentation, gap assessment, gap resolution and continuous improvement of the capability
Keep up-to-date, make recommendations, and lead or participate in the implementation and continuous improvement of technologies and services in assigned information security domains
Work with and provide guidance to Security Operations and other Information Security team activities on security strategies, processes, response and technologies
Support Incident Response on security incidents including contributing to mock security incident exercises
Define, provide, and improve measurement and analysis on the assigned services including the use of appropriate applications and tools for reporting
Develop or participate in the development of business cases and presentations on information security technologies of interest to Amgen
Advise project teams, application owners, and other Information Security teams (like Identify) on information security controls
Perform security design consulting in support of projects including participation to security archtiecture reviews as necessary
Participate in projects or initiatives where an Information Security Engineer is needed with a focus on ensuring inclusion of information security requirements
Provide mentorship and training on areas of expertise to Information Security and Amgen teams
Collaborate, maintain and build relationships with Amgen and other parties that may impact Information Security services and technologies
Participate in audits covering information security services and technologies
Participate in proactive research and provide recommendations for continuous improvement on information security technologies, processes and services
Participate in on-call and perform appropriate escalation of problems and issues
Specialist Information Security Engineers will also present project status reports to senior management, adhere to policies and practices relative to technical guidelines and change management processes, and may contribute to the development of new policies and practices by suggesting innovative ideas.
Domestic and International travel up to 10%.
Master’s degree & 3 years of Information Security OR Information Technology experience
Bachelor’s degree & 5 years of Information Security OR Information Technology experience
Associate’s degree & 10 years of Information Security OR Information Technology experience
High school diploma / GED & 12 years of Information Security OR Information Technology experience
Strong demonstrated knowledge and experience on continuous security monitoring with technologies and solutions like Syslog, Security Information and Event Management (SIEM), User and Entity Behaviour Analytics (UEBA), etc.
Demonstrated knowledge and experience in one or more Information Security capability like security monitoring, threat intelligence, network protection, data protection, endpoint protection, technical security assessments, security architecture
Experience in using and managing Linux-based operating systems and developing Perl or Python scripts
Experience in complex enterprise environments and current technology areas like cloud and mobility
Practical Knowledge of Information Security standards and policies like ISO 27001/27002, NIST, and others
Excellent verbal and written communication skills
Demonstrated success in leading multi-functional initiatives without formal authority through the use of strong influencing and negotiating skills
Effective working with global, virtual teams
Successful management of multiple priorities
Team-oriented, placing priority on the successful completion of team goals
Self-starter with a high degree of initiative
Highly motivated and able to work effectively under minimal supervision
Experience with regulated systems (GxP, SOX) in the pharmaceutical, biotechnology, healthcare industry
Excellent analytical and troubleshooting skills
Experience with complex technologies that impact security
Experience with technical documentation as it relates to the delivery of information security services in a regulated environment
5+ years as a senior security engineer supporting a multinational organization
CISSP or equivalent security-related industry certifications
Amgen is committed to unlocking the potential of biology for patients suffering from serious illnesses by discovering, developing, manufacturing and delivering innovative human therapeutics. This approach begins by using tools like advanced human genetics to unravel the complexities of disease and understand the fundamentals of human biology.
Amgen focuses on areas of high unmet medical need and leverages its expertise to strive for solutions that improve health outcomes and dramatically improve people’s lives. A biotechnology pioneer since 1980, Amgen has grown to be one of the world’s leading independent biotechnology companies, has reached millions of patients around the world and is developing a pipeline of medicines with breakaway potential.
The invaluable contributions of our talented Tampa team will help us develop the vital and innovative medicines that treat serious illness and unmet medical needs around the globe.
Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.