Manager, IT Security Engineering
Role details
Job location
Tech stack
Job description
The Platform Security Engineer is a key member of Gilead's Security, Risk and Compliance (SRC) team and works closely with cross-functional project teams to pursue project end goals. The candidate will work with platform security technologies in multiple capacities. These include but are not limited to leading invest and sustainment projects that seek to enhance existing or implement new capabilities, providing high level support for security solutions, partnering with IT and business colleagues to address security needs, and generally furthering the appropriate identification and treatment of risk at Gilead.
**Essential Job Functions: **
- Work with SRC stakeholders to determine / define needs and requirements for security capabilities to address business needs and mitigate risk.
- Install,configure,and evaluatenew technologiesagainst defined requirements through proof-of-concept implementations.
- Demonstrated ability to troubleshoot and resolve technical issues across multiple operating systems, including Windows, Linux, and macOS, at both the endpoint and server level.
- Develop solution architectures to support the implementation ofnew technologies.
- Create documentation includingrequirements,test cases,and standard operatingproceedures.
- Liaise with IT colleagues to assistwith implementation and rollout of platform security tools.
- Provide input to SRC's Platform security roadmap to ensure critical needs and / or gaps are identifiedand planned for at the right time.
- Assistin formalizing and updating security policies,proceduresand technical standards.
- Lead sustainment projects that support maintenance andenhancementsof existing capabilities.
- Act as system manager foridentifiedplatform security tools.
Requirements
High School Degree and Eleven Years' Experience OR Associate's Degree and Nine Years' Experience OR Bachelor's Degree and Seven Years' Experience OR Masters' Degree and Five Years' Experience, * Practical experience inIT Security and infrastructure protection.
- Experience performing project focused information security work with cross-functional teams in an enterprise setting.
- Must have a good understanding of the following security domains: Audit and Monitoring, Risk Response & Recovery, Cryptography, Data Communications, Computer Operations Security, Telecommunications & Network Security, Security Architecture & Models, and cloud security.
- Should have strong technical skills and experience working with security technologies in the platform security space. These include (but are not limited to):
- End-to-end management of EDRsolutions at enterprise scale
- DLP & DSPM
- Automation / Security Orchestration Automation & Response (SOAR)
- Scripting (python,PowerShell, bash etc.)
- Security Information & Event Management (SIEM) content creation, data sourceon-boarding
- Strong verbal and written communication skills with the ability to adapt information delivery based on the target audience.
- Ability to work in a fast paced, highly visible, changing environment.
- Proven ability to build working relationships with partners, peers, and senior management.
- Excellent analytical andproblem-solvingskills.
- Working knowledge of IT processes (i.e., ITIL) including incident, problem, defect, change, etc.
- Prior working experience in a pharmaceutical company is preferred.
- Excellent presentation,facilitation,and diplomacy skills.
- Able to perform other duties as assigned.
- Ability to document technical solutions with excellent organization and grammar.
- Prefer CISSP, GIAC, etc.