Principal Cloud Security Architect

Career Category

Job Description

Join our team at Amgen Capability Center Portugal, the #1 company in Best Workplaces™ (201–500 employees category) by the Great Place to Work Institute. With over 400 talented individuals from more than 40 nationalities, our Lisbon center thrives at the intersection of innovation, excellence, and inspiration. This is your opportunity to explore the future of healthcare through technology and digital innovation, supporting our mission To Serve Patients.

Principal Cloud Security Architect

LIVE

WHAT YOU WILL DO

Let’s do this. Let’s change the world. In this vital role you will report to the Director Global Cloud Security leader in our Cybersecurity and Digital Trust (CDT) organization and will be based in Lisbon, Portugal at Amgen’s Capability Center. At Amgen, our mission is simple: to serve patients. Our Portugal Capability Center provides essential services that enable us to better pursue this mission. This state-of-the art center serves as a base for finance, information systems, and human resources professionals to make a meaningful impact at one of the world’s leading biotechnology companies.

This position will be responsible for shaping compliance and security of Amgen's modern business workloads in the cloud globally. The principal architect will play the lead role in designing, deploying and maintaining security solutions, automation, audits, policy and standard enforcements.

Job Responsibilities:

• Design, implement, and maintain reusable security architecture patterns, and serve as the Cloud Security Domain Architect responsible for establishing reference architectures that align security capabilities, processes, and technologies.

• Continuously assess cloud security risks and threat landscape, identify control gaps, and develop mitigation strategies to support secure and compliant systems across the SDLC.

• Lead the design, development, testing, integration, and deployment of security technologies and capabilities, including CSPM, CWPP, WAF, DSPM, among others.

• Maintain current architectural documentation, engineering blueprints, and reference architectures in the system of record, and contribute to the development of Security Configuration Baseline standards for cloud operations.

• Collaborate cross-functionally with infrastructure, security, engineering, and application teams to improve cloud security, compliance, and resilience, while supporting incident response, cyber investigations, and audit activities as a subject matter expert.

• Provide strategic security consulting to project teams and enterprise architects, advising on security controls, policies, standards, reusable patterns, and best practices under the Amgen City Plan program.

• Define, measure, and improve service metrics using appropriate tools, and contribute to business cases and technology evaluations to drive security investments.

• Domestic and international travel up to 10%.

WIN

WHAT WE EXPECT OF YOU

We are all different, yet we all use our unique contributions to serve patients. The Cloud Security professional we seek is a problem solver with these qualifications.

Basic Qualifications:

Doctorate degree and 2 years of Cyber Security Architecture experience

Or

Master’s degree and 4 year of Cyber Security Architecture experience

Or

Bachelor’s degree and 6 years of Cyber Security Architecture experience

Or

Associate’s degree and 10 years of Cyber Security Architecture experience

Or

High school diploma / GED and 12 years of Cyber Security Architecture experience

Preferred Qualifications:

• Over 6 years of experience supporting cloud automation, development, testing, and deployment of infrastructure and applications across AWS.

• Advanced knowledge of cloud security domains including Identity and Access Management (IAM), Data Security, DevSecOps, Logging, Key Management, network security, and Encryption; with emerging understanding of hybrid cloud models and modern workloads.

• Solid hands-on experience with AWS foundational services (compute, networking, storage, security, deployment, and automation), and working knowledge of enterprise cloud solutions across IaaS, PaaS, and SaaS (e.g., OpenStack, Mulesoft, Salesforce, O365, Box).

• Proficient in microservices programming using technologies like AWS Lambda and Docker; experienced in architecting and developing RESTful services in cloud-native environments.

• Familiarity with industry security frameworks and standards such as ISO 27001/2, NIST, CSA, CIS, and COBIT.

• DevSecOps expertise and leveraging infrastructure as code tools such as Terraform and AWS cloud formation.

• Certified in multiple security and cloud domains:

• CISSP (or equivalent)
• AWS Security Specialty
• AWS DevOps Engineer
• AWS Solutions Architect – Professional
• Microsoft Security Operations Analyst
• Microsoft Cybersecurity Architect Expert

THRIVE

WHAT YOU CAN EXPECT OF US

As we work to develop treatments that take care of others, we also care deeply for our teammates’ well-being and growth.

• Work That Matters – Build tech that accelerates scientific breakthroughs and helps patients worldwide.

• Modern Tech Stack – Cloud-first, automation-focused, AI-powered.

• Global Scale, Agile Mindset – Collaborate across continents while working in nimble, high-impact teams.

• Continuous Learning – Access to certifications, trainings, mentorship, and career mobility.

• Amgen Total Rewards Plan – Comprehensive benefits in healthcare, finance, and well-being.

• Flexibility – Hybrid work model with time split between our Lisbon office and remote work.