Senior Security Solutions Engineer

The Cloud Security Infrastructure team is responsible for creating and maintaining settings and resources in various Cloud environments to collect and transfer various logs to our Security Information and Event Management (SIEM) system for use by the Incident Management teams. The Cloud Security Infrastructure

team is responsible for maintaining the infrastructure and creating custom policies for the Wiz Cloud native application protection (CNAPP) tool to secure the GSK cloud environments. The services we operate are of a global nature, providing service solutions to multiple business units, totaling over 100,000 users located around the world. Thus, one of our team’s roles is to communicate efficiently with all the stakeholders and customers in different countries.

The new Senior Security Solutions Engineer’s role will be to secure, monitor, analyze, configure, improve, and report on those services to ensure they meet the needs of the business, function well within the GSK environment, are cost effective and align with the strategic direction of the service line. The Senior Security Solutions Engineer will be responsible for analyzing user reported incidents and requests, finding patterns, forecasting trends, ensuring each service operates properly, meeting the SLA, and aligning with the changing needs of the business. The Senior Security Solutions Engineer will provide recommendations for improvements and optimizations based on their experience and analytical insight into current operations and processes.

Key Responsibilities:

• Manage infrastructure of the Wiz CNAPP tool.
• Create custom policies in the Wiz CNAPP tool and/or Open Policy Agent.
• Manage and audit various Cloud policies and resources related to sending logs to the SIEM.
• Facilitate complex technology changes on multiple global platforms and collaborate effectively with global customers.
• Contribute to process designs, service definitions, service models, and service/operational level agreements.
• Provide value as part of a Cybersecurity Operations Infrastructure team within the security domain by leading the delivery of complex tasks and coordinating projects.
• Provide recommendations for continuous improvement opportunities based on data.
• Escalate and participate in service issues, where appropriate, with service management.
• Participate actively in Change Approval Boards, risk assessments, and audits.
• Implement technical and business requirements for server, data, and application protection solutions, participate in project design, documentation, and reporting processes.
• Manage various cloud policies and resources related to sending logs to the SIEM.
• Audit various cloud policies and resources related to sending logs to the SIEM.
• Manage infrastructure of Cloud Security Posture Management (CSPM) tool.

Basic Qualifications:

• Experience with CNAPP
• Knowledge of network topology and security to include data analysis, operating system attributes and other industry best practices related to cyber security strategies.
• Strong technical experience including Azure / GCP cloud, and scripting languages as well as centrally managed security systems.
• Experience in creating security systems’ policies and rules, alert analysis, triage, audits.
• Participation in Security Incident analysis. ​
• Strong organizational skills, detail oriented in both written and verbal communications.
   

Preferred qualifications:

• Professional certifications such as: CCNA, CISSP, CISA, CISM, GIAC, CEH, or other relevant industry certification and/or desire to obtain such certifications.

Benefits:

•    Career at one of the leading global healthcare companies
•    Attractive reward package (competitive salary, annual bonus & awards for outstanding performance, recognition awards for additional achievements and engagement, holiday benefit
•    Possibilities of development within the role and company’s structure
•    Life insurance and pension plan
•    Open and inclusive environment which is supportive and welcoming of all diversity strands (gender, race, ethnicity, sexuality, disability, or any other characteristic)
•    Private medical package with additional preventive healthcare services for employees and their eligible counterparts
•    Sports cards (Multisport)
•    Personalized learning approach and external trainings
•    Extensive support of work life balance (flexible working solutions including working from home possibilities, health & wellbeing activities)
•    Supportive community and integration events
•    Modern office with creative rooms, fresh fruits everyday
•    Free car and bike parking, locker rooms and showers

#LI-GSK
#GSKcso

G7

Why GSK?

Uniting science, technology and talent to get ahead of disease together.

GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology).

Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves – feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.

GSK is an Equal Opportunity Employer. This ensures that all qualified applicants will receive equal consideration for employment without regard to race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), parental status, national origin, age, disability, genetic information (including family medical history), military service or any basis prohibited under federal, state or local law.

Important notice to Employment businesses/ Agencies

GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.

Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK’s compliance to all federal and state US Transparency requirements. For more information, please visit the Centers for Medicare and Medicaid Services (CMS) website at https://openpaymentsdata.cms.gov/