Cyber Security Architect

The Security Architect role at GSK is a pivotal position within the Cyber Security Office, reporting directly to the Security Architecture Lead. This role offers an exciting opportunity to collaborate with cross-functional teams from IT, Cyber Security, and Business Units to architect and design robust security solutions that effectively protect GSK’s enterprise networks from evolving cyber threats. As an individual contributor, you will focus on strategic design and innovation, ensuring that our security strategies align with industry standards and best practices such as TOGAF, SABSA, Purdue, and NIST frameworks. This role is designed for individuals who are passionate about cybersecurity, possess strong expertise in security, and are eager to make a significant impact on GSK’s security posture.

​Key Responsibilities:

• Drive the strategic design and implementation of innovative security solutions and controls​

• Stay at the forefront of industry standards, regulations, and best practices related to IT and OT security, ensuring continuous improvement​

• Generate comprehensive documentation, certification, and testing protocols for the deployment of new security solutions​

• Continuously monitor and analyze current cybersecurity threats, trends, and emerging technologies to inform strategic security initiatives​

• Work closely with engineering and architecture teams to ensure security requirements are integrated into all phases of the system development lifecycle​

• Define and implement advanced security configurations, policies, and procedures for IT and OT assets and systems​

• Effectively communicate with stakeholders at all levels, translating complex technical concepts into actionable security strategies​

• Support the development and implementation of security architectures across various domains, including data security, AI, cloud, network security, monitoring detection and response, threat, risk, vulnerability asset and configuration management, and platform security​

• Conduct security assessments and gap analyses to identify and mitigate security risks​

• Provide technical guidance and mentorship to security engineers and other team members​

• Perform assessments of capabilities and tools to ensure alignment with GSK business and security needs​

• Assist with product Proof of Concept (POC) evaluations to validate security solutions​

• Create and execute test plans to rigorously evaluate security controls and document results to provide unbiased outcomes that demonstrate alignment with GSK business and security needs in a seamless manner​

Required skills:

• Proven experience in developing security strategies and reference architectures​

• Familiarity with TOGAF, SABSA, or Purdue Enterprise Reference Architecture​

• Experience in designing and deploying network security controls and solutions​

• Extensive knowledge of security technologies, including encryption, authentication, authorization, security protocols, data and privacy, AI/ML, and application development​

• Strong communication and interpersonal skills, ability to effectively manage stakeholders​

• Proficiency in writing, developing, and maintaining technical documentation, including security standards, strategies, and implementation plans​

• Ability to prioritize and filter actions to focus on those with significant impact on the program​

• Capability to work with multiple stakeholders to promote practical solutions to complex security problems​

• Excellent problem-solving and analytical skills, with the ability to work under pressure​

• Hands-on experience in at least three of the following security domains: data security, AI, cloud, network security, monitoring detection and response, threat, risk, vulnerability asset and configuration management, or platform security​

• Experience with threat modeling and risk assessment methodologies​

• Experience in security automation and orchestration​

• Knowledge of AI and machine learning security considerations​

• Understanding of regulatory requirements/industry standards (e.g., GDPR, HIPAA, PCI)​

​Required Qualifications​

• Advanced degree in Computer Science​

• 5+ years of cyber security engineering experience​

• Any of the following: CISSP, CISM, CEH along with Azure, GCP or AWS certifications​

• Experience with security tools and technologies (e.g., firewalls, IPS, Email Security, SOAR, Threat Intel, SIEM, DLP, EDR, encryption, etc.).​

• Experience in global manufacturing, pharma, and/or a life sciences company
   

Benefits:

·       Career at one of the leading global healthcare companies

·       Company Car or Car Allowance

·       Long-Term incentives 

·       Contract of employment 

·       Attractive reward package (annual bonus & awards for outstanding performance, recognition awards for additional achievements and engagement, holiday benefits

·        Life insurance and pension plan

·       Private medical package with additional preventive healthcare services for employees and their eligible

·       Sports cards (Multisport)

·       Possibilities of development within the role and company’s structure

·       Extensive support of work life balance (flexible working solutions, short Fridays option, health & well-being activities)

·       Supportive community and integration events

·       Modern office with creative rooms, fresh fruits everyday

·       Free car and bike parking, locker rooms and showers       

#LI-GSK

G6

​

Why GSK?

Uniting science, technology and talent to get ahead of disease together.

GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology).

Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves – feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.

GSK is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class.

Important notice to Employment businesses/ Agencies

GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.

Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK’s compliance to all federal and state US Transparency requirements. For more information, please visit the Centers for Medicare and Medicaid Services (CMS) website at https://openpaymentsdata.cms.gov/