IT Security Engineer

At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections,  where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters.

The Position

Responsabities:

Design: 

• Design and develop robust network segmentation strategies and architectures leveraging Fortinet and Palo Alto firewalls to meet business and security requirements.
• Create detailed network diagrams, design documents, and implementation plans for new segmentation environments.
• Collaborate with network architects to integrate firewall solutions seamlessly into the existing network infrastructure

Implementation & Deployment:

• Configure, deploy, and manage Fortinet FortiGate and Palo Alto Networks firewalls (including Panorama for Palo Alto, FortiManager for Fortinet).

• Implement firewall policies, NAT rules, VPNs (IPSec/SSL), authentication, routing, and other security features to enforce segmentation.

• Perform migrations and upgrades of existing firewall infrastructure

Operations & Maintenance:

* Troubleshoot complex network and security issues related to firewall configurations and segmentation

* Stay current with emerging threats, vulnerabilities, and security technologies.

* Available for on-call support on a rotating schedule.

Technical Skills and Experience Required

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field

• 5+ years of experience in designing, deploying, and supporting Next-Generation Firewalls with a strong networking background.

• Extensive hands-on experience with Fortinet (FortiGate, FortiManager, FortiAnalyzer, etc.) and a deep understanding of Fortinet's Security Fabric.

• Extensive hands-on experience with Palo Alto Networks (PA-Series, VM-Series, Panorama, App-ID, User-ID, WildFire, Threat Prevention, Decryption, URL Filtering, GlobalProtect).

• Solid understanding of Security concepts, trends and best practices with experience in validated environments.

• Hands-on technical security skills, operational background, and experience with security technologies and underlying infrastructure. 

Soft Skills Required

• Customer-oriented and service-focused.

• Self-motivated and independent.

• Strong analytical skills.

• Excellent written and spoken English.

• Collaborative and proactive team player.

• Ability to work in a global team.

• Ability to perform well in high-stress situations.

Knowledge and/or experience in any of the following areas is a plus:

• Certifications: Fortinet NSE 4, 5, 7, or 8 or Palo Alto Networks: PCNSA PCNSE

• Other relevant certifications: CCNP Security, CISSP

• Familiarity with Cloud Platforms such as AWS

• Programming and Ops Skills: Python, Perl, Ruby, Powershell.

• Agile and DevOps Toolsets: Jenkins, Ansible, Git, GitLab, Terraform

• Agile framework / methodologies.

A healthier future drives us to innovate. Together, more than 100’000 employees across the globe are dedicated to advance science, ensuring everyone has access to healthcare today and for generations to come. Our efforts result in more than 26 million people treated with our medicines and over 30 billion tests conducted using our Diagnostics products. We empower each other to explore new possibilities, foster creativity, and keep our ambitions high, so we can deliver life-changing healthcare solutions that make a global impact.

Let’s build a healthier future, together.

Roche is an Equal Opportunity Employer.