Senior Data Security Engineer - Guadalajara, México - AstraZeneca

AstraZeneca
AstraZeneca
Empresa verificada
Guadalajara, México

hace 1 mes

Rodrigo Fernández

Publicado por:

Rodrigo Fernández

Reclutador de talento para beBee
Descripción

Senior Data Security Engineer

About the AstraZeneca


AstraZeneca is a global, innovation-driven biopharmaceutical business that focuses on the discovery, development, and commercialization of prescription medicines for some of the world's most serious diseases.

But we're more than one of the world's leading pharmaceutical companies.

At AstraZeneca, we're proud to have a unique workplace culture that inspires innovation and collaboration.

Here, employees are empowered to express diverse perspectives - and are made to feel valued, energized and rewarded for their ideas and creativity.


About the team


Enterprise Technology Services (ETS) are a global team that are accountable for many of the IT tools and services that directly contribute to the effectiveness of our AstraZeneca colleagues.


We partner locally in more than 60 global business sites for service delivery and IT experience and are accountable for all infrastructure, cybersecurity, IT operations and End User services and technologies.


ETS also manages many of the large IT contracts at AZ, as well as partnering with large organisations on behalf of AZ to deliver value and innovation through new and existing capabilities and services.


About The role
Cybersecurity is paramount to our IT strategy as we progress towards our future objectives.

As we navigate through this dynamic and challenging technology landscape, we seek for a Data Security Engineer that comprehend that security is a continuous journey, not a final destination.

We recognize that investing in cybersecurity entails more than simply purchasing solutions; it demands individuals who prioritize innovation to sustain a resilient risk posture against the ever-evolving threat landscape.

Moreover, we acknowledge the reality of potential adversaries, whether they be organized crime syndicates or state-sponsored actors, and thus require professionals who grasp their motivations and methodologies.

In our pursuit of safeguarding data within a customer-centric global enterprise, we value professionals who appreciate the criticality of data security.

Join us in shaping a secure digital future.


The Senior Data Security Engineer
will be accountable for:

  • Engineer cybersecurity solutions spanning cloud, on-premises, and third-party collaboration environments, with a predominant focus on cloud and data.
  • Collaborate with other teams in performing, assessing, and evolving IT processes that intersect any of our cybersecurity priorities.
  • Map governance and compliance frameworks and their controls to technical implementation, shifting hardening processes as far left as possible.
  • Leverage understanding of threats, weaknesses, and vulnerabilities around cloud and data to assist other areas in responding promptly and effectively to contain breaches or to address areas of concern.
  • Contribute to defining the future state of cybersecurity within the organisation by conducting gap analysis between our current state and the desired state for tools and services around cloud and data.
  • Actively collaborate with multiple teams in AstraZeneca to implement and maintain periodic access audits to assess how systems and human identities interact with data.
  • Review existing data security protocols and plan for required improvements.
  • Leverage data access analytics to design processes and software to provide increased data security.
  • Define the roadmap of our data security technologies.
  • Champion a culture of leastprivilege access to data.

Requirements:


Essential

  • Must have large enterprise IT experience, ideally with significant cloud and data exposure.
  • Should have experience working in a software development and systems administration organization ideally implementing DevSecOps and process automation.
  • Must have experience researching, designing, and implementing data security policies, standards, and procedures, including those in GDPR, CCPA and other privacy regulations, as well as implementing data security reference architectures.
  • Familiarity with common attack techniques and their remediation or defence including social engineering, phishing, worms, trojans, rootkits, ransomware, XSS, SQL injection, remote command execution, session hijacking, DDoS, etc.
  • Must have solid experience configuring and managing cloud security services in an AWS organization, including service control, backup and tagging policies, firewalling, threat detection and data classification.
  • Must have strong experience identifying, deploying, and managing cloud security services complementary to cloud provider native services, in a multicloud environment spanning AWS, GCP and Azure.
  • Solid understanding of identity management and access control protocols.
  • Knowledge of business continuity, risk assessment, disaster recovery, and computer forensics.
  • Ability to conduct postmortem on security incidents and take postmortem data to drive uplift in policies, procedures, standards.
  • E
Más ofertas de trabajo de AstraZeneca
Ver todas las ofertas de empleo de AstraZeneca