Senior Manager, Penetration Testing & Red Teaming

Career Category

Job Description

Join Amgen’s Mission of Serving Patients

At Amgen, if you feel like you’re part of something bigger, it’s because you are. Our shared mission—to serve patients living with serious illnesses—drives all that we do.

Since 1980, we’ve helped pioneer the world of biotech in our fight against the world’s toughest diseases. With our focus on four therapeutic areas –Oncology, Inflammation, General Medicine, and Rare Disease– we reach millions of patients each year. As a member of the Amgen team, you’ll help make a lasting impact on the lives of patients as we research, manufacture, and deliver innovative medicines to help people live longer, fuller happier lives.

Our award-winning culture is collaborative, innovative, and science based. If you have a passion for challenges and the opportunities that lay within them, you’ll thrive as part of the Amgen team. Join us and transform the lives of patients while transforming your career.

Senior Manager, Penetration Testing & Red Teaming

What you will do

Let’s do this. Let’s change the world. In this vital role has a strong focus on ensuring the organization's infrastructure, applications, and systems are secure from external and internal threats. As a senior-level position, this role involves not only hands-on penetration testing but also overseeing teams, setting testing strategies, and working closely with other security and engineering teams to implement long-term security improvements. The ideal candidate has in-depth knowledge of cybersecurity practices, experience in complex security assessment practices and strong leadership skills.

Roles & Responsibilities:

• Develop and implement the penetration testing strategy in alignment with Amgen’s security framework.

• Champion a proactive security culture, integrating offensive security principles into Amgen’s broader risk management program.

• Lead, mentor, and develop a team of penetration testers, fostering a culture of innovation and continuous learning.

• Provide coaching and training to enhance the team’s technical and strategic capabilities.

• Build and maintain a high-performance security team, ensuring strong succession planning and career development opportunities.

• Oversee complex penetration testing engagements, ensuring high-quality execution and impactful reporting.

• Establish standard methodologies and frameworks for offensive security testing, risk assessment, and mitigation strategies.

• Ensure penetration testing methodologies align with industry standards (e.g., PTES, OWASP, MITRE ATT&CK).

• Serve as a trusted advisor to security, engineering, and executive leadership teams on cybersecurity risks and offensive security findings.

• Advocate for secure development practices and influence secure-by-design principles across engineering teams.

• Communicate technical security risks in business terms to executive collaborators and senior leadership.

• Define and enforce security testing policies, methodologies, and compliance requirements.

• Drive initiatives to enhance security automation and continuous testing frameworks.

• Ensure penetration testing efforts contribute to regulatory compliance (e.g., ISO 27001, NIST).

What we expect of you

We are all different, yet we all use our unique contributions to serve patients.

Basic Qualifications:

Master’s degree and 8 to 10 years of experience in Computer Science, Cybersecurity or Information Systems related field OR

Bachelor’s degree and 10 to 14 years of experience in Computer Science, Cybersecurity or Information Systems related field OR

Diploma and 14 to 18 years of experience in Computer Science, Cybersecurity or Information Systems related field

Must-Have Skills:

• Proven experience in leading and managing high-performing security teams.

• Strong ability to influence senior collaborators and drive security adoption across an organization.

• Ability to translate technical security risks into business-aligned security strategies.

• Experience building and managing enterprise-wide penetration testing programs.

• Demonstrated ability to foster a culture of innovation, learning, and collaboration within security teams.

Technical & Security Skills

• Deep knowledge of penetration testing frameworks and methodologies (e.g., OWASP, NIST, MITRE ATT&CK, PTES).

• Strong understanding of web application, cloud, and infrastructure security vulnerabilities.

• Experience with security tools such as Burp Suite, OWASP ZAP, Metasploit, Kali Linux.

• Familiarity with secure coding principles, threat modeling, and adversary simulation.

Professional Certifications (please mention if the certification is preferred or mandatory for the role):

• Preferred: OSCP, OSWE, OSWA, eWPTX, GWAPT, GXPN

• Preferred: CISSP

Preferred Qualifications:

Soft Skills:

• Excellent analytical and troubleshooting skills

• Strong verbal and written communication skills

• Ability to work effectively with global, virtual teams

• High degree of initiative and self-motivation

• Ability to manage multiple priorities successfully

• Team oriented, with a focus on achieving team goals

• Strong presentation and public speaking skills

What you can expect of us

As we work to develop treatments that take care of others, we also work to care for your professional and personal growth and well-being. From our competitive benefits to our collaborative culture, we’ll support your journey every step of the way.

In addition to the base salary, Amgen offers competitive and comprehensive Total Rewards Plans that are aligned with local industry standards.

Apply now and make a lasting impact with the Amgen team.

careers.amgen.com

As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other and live the Amgen values to continue advancing science to serve patients. Together, we compete in the fight against serious disease.

Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or any other basis protected by applicable law.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.