AI and Automation Engineer - Information Security Governance

As an AI & Automation Engineer on Roche's Information Security & Privacy By Design team, you serve as the critical architect bridging strategic security expertise with scalable, self-service execution. Your mission is to democratize security and privacy knowledge by building intelligent agents and low-code tools that empower Roche employees and make risk management proactive, intuitive, and frictionless., 1. AI Solution Development & Knowledge Engineering

• Own the development and roadmap of internal AI-based advisory tools.
• Transform static security policies and knowledge-base articles into interactive, intelligent agents.
• Build and optimize data pipelines for Retrieval Augmented Generation (RAG) that ingest Google Docs, ServiceNow KB articles, and slide decks into AI models.
• Continuously refine prompt engineering and tuning to ensure LLM performance is technically sound, brand-aligned, and user-friendly.

2. Low-Code & Automation Engineering

• Leverage Roche's low-code platforms (e.g. LEAP/OutSystems) to build front-end interfaces that provide employees with 24/7 security guidance.
• Identify manual bottlenecks in IRAAM/PETRA/OIA workflows and engineer automated solutions.
• Maintain and optimize operational tools such as Google Apps Script used for Security Expert Review Triage, ensuring reliable data aggregation from Snowflake, ThoughtSpot, and ServiceNow.

3. Operational Excellence & Support

• Act as the primary technical contact for AI and automation tool incidents, troubleshooting issues and coordinating with platform teams.
• Support the Information Security Coordinator network and end-users, ensuring they understand how to maximize the value of automated security tools.
• Analyze tool usage and AI response accuracy, using data insights to propose continuous feature enhancements.

4. Evangelism & Partnership

• Collaborate with Security and Privacy experts to translate their knowledge into logic-based automation and AI workflows.
• Serve as a subject-matter expert researching emerging AI trends and machine-learning applications that support threat identification and policy analysis.

• Experience: 3-5 years in AI/ML engineering and workflow automation.
• RAG & LLM Integration: Proven ability to engineer data pipelines and mitigate AI hallucinations.
• Low-Code Development: Prior experience with Outsystems (Roche LEAP) or similar enterprise-grade low-code technologies.
• Regulated Industry: Experience in regulated environments (Pharmaceutical, Healthcare, or Finance) is a plus.
• Education: Bachelor's degree in Computer Science, Software Engineering, Information Systems, or a related technical field.
• Architectural Mindset: Ability to design complex data flows connecting unstructured documents to structured AI outputs.
• Automation Mastery: Proficiency in JavaScript/Google Apps Script, Python, and experience with Snowflake, ThoughtSpot, or Tableau.
• Platform Knowledge: Foundational understanding of ServiceNow (GRC and ITSM).
• Security Foundations: Understanding of information-security principles and data-privacy controls.
• Analytical Problem Solving: Debug complex automation failures and root-cause analysis.
• User-Centric Design: Passion for building intuitive tools for employees.
• Leadership & Communication: Build trust with experts and explain technical concepts to non-technical stakeholders.
• Innovation & Curiosity: Passion for applying GenAI/LLMs to solve real-world challenges.
• Thriving in Ambiguity: Navigate complexity and drive clarity when translating strategy into functional tools.
• Self-Starter: Manage technical workstreams from concept to production with minimal supervision.