Data Security Engineer

Roche fosters diversity, equity and inclusion, representing the communities we serve. When dealing with healthcare on a global scale, diversity is an essential ingredient to success. We believe that inclusion is key to understanding people’s varied healthcare needs. Together, we embrace individuality and share a passion for exceptional care. Join Roche, where every voice matters.

The Position

Data Security Engineer

At Roche, we foster a diversity of scientific approaches and embrace innovative ideas. Combining that with the seamless integration of our capabilities in Roche Pharma and Roche Diagnostics, we are uniquely positioned to achieve medical breakthroughs for patients and society.  With our global spread of research, diagnostics and pharma development, data analytics and genomic insight teams, we are all working to translate science and research into groundbreaking therapies and diagnostics.

We are seeking a skilled and experienced Data Security Engineer to join our team and contribute to the development and maintenance of our Data Platform. As a Data Security Engineer, you will play a crucial role in ensuring the security and privacy of our data assets.

You will be part of the Information Systems Security team at Roche.  We are a team of 40 engineers distributed across the globe with expertise in Cloud Security, Endpoint Protection, Network Security, Remote Access Management, etc. 

The opportunity:

• Design, implement, and maintain robust security measures and protocols for our Data Platform.

• Develop and enforce data security policies and procedures to protect sensitive information.

• Collaborate with cross-functional teams to identify potential vulnerabilities in the data platform architecture and provide solutions to mitigate risks.

• Conduct regular security assessments and audits to identify and address any security gaps or vulnerabilities.

• Monitor and analyze security events and incidents, and respond promptly to any security breaches or threats.

• Stay up-to-date with the latest industry trends and best practices in data security and privacy including regulations such as GDPR and others. Propose improvements accordingly.

• Work closely with the Data Engineering and IT teams to implement security controls and ensure compliance with relevant regulations and standards.

• Provide guidance and support to other team members on data security best practices and procedures.

• Participate in incident response activities and contribute to the development of incident response plans.

Who you are:

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field.

• 3+ years of proven experience as a Data Security Engineer or in a similar role.

• Hands-on experience with data security principles, practices, and technologies, including encryption, access control, and data loss prevention (DLP).

• Experience working with data security platforms such as Immuta (a plus).

• Familiarity with cloud-based data platforms and security solutions (AWS, Azure, Snowflake).

• Solid understanding of data governance frameworks and compliance with industry regulations (e.g., GDPR, HIPAA).

Technical skills:

• Proficiency in designing and implementing security protocols for data platforms.

• Experience with security assessments, vulnerability management, and penetration testing.

• Strong analytical skills to assess risk and develop effective security solutions.

• Knowledge of incident response and management processes.

• Hands-on experience with automation and scripting (Python, Shell scripting) is a plus

Additional requirements:

• Strong communication and collaboration skills to work effectively with cross-functional teams.

• Ability to explain complex security concepts to non-technical stakeholders.

• Self-motivated with strong problem-solving and critical-thinking abilities.

• Ability to work in a hybrid setup based in Poland or Madrid.

• Willingness to stay up-to-date with the latest developments in data security and emerging technologies.

Knowledge and/or experience in any of the following areas is a plus:

• Agile and DevOps Toolsets: Jenkins, Ansible, Git, Terraform

• AWS/Azure/GCP cloud services.

• Agile framework / methodologies.

• Relevant industry certifications such as CISSP, CISM, CEH, or GIAC

What you get:

• Good and stable working environment with attractive compensation and rewards package (according to local regulations);

• Full time employment contract;

• Annual bonus payment based on performance;

• A dedicated training budget (training, certifications, conferences);

• Access to various internal and external training platforms (e.g. Linkedin Learning);

• Experienced and professional colleagues and workplace that supports innovation;

• Multiple  Savings Plans with Employer Match 

• Company’s emphasis on employees’ wellness and work-life balance ( (e.g. generous vacation days and OneRoche Wellness Days ),;

• State of art working environment and facilities;

• And many more that the Talent Acquisition Partner will be happy to talk about!

APPLY DIRECTLY

If you feel this offer suits a friend of yours, feel free to share it. 

Want to know what it’s like to be a part of Roche IT first-hand?  Check out our blog!  

https://www.roche.com/careers/weareroche.htm

Who we are

At Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Working together, we’ve become one of the world’s leading research-focused healthcare groups. Our success is built on innovation, curiosity and diversity.

At Roche Poland, we are more than 800 professionals working together on one mission. We are proud of who we are, what we do and how we do it. Join us in the area of Clinical Research, Medical, Marketing, IT or business departments.

Roche is an Equal Opportunity Employer.