Security Engineer
Role details
Job location
Tech stack
Job description
We are seeking a highly motivated, hands-on Security Engineer to design, build, and deploy robust security protections across our US enterprise, R&D, and lab networks. This is not a passive monitoring or triage role; we are looking for a true engineer who can "roll up their sleeves" to implement defensive tools, automate guardrails, and harden infrastructure. Given our footprint as a global organization with headquarters in Europe, a primary focus of this position will be bridging the gap between localized US operations and global privacy laws, requiring explicit knowledge of GDPR alongside US data security standards., * Security Infrastructure Building: Architect, deploy, and configure technical security controls across endpoint (EDR), email, network, and cloud domains.
- Cloud Security Engineering: Build, tune, and manage cloud security guardrails within a hybrid Azure and AWS environment, securing core data platforms and R&D lab networks.
- Global Compliance & GDPR Integration: Design and implement data protection mechanics (encryption, data masking, access logging) that satisfy stringent GDPR requirements for cross-border data flows.
- Automation & Tool Customization: Leverage scripting languages (Python, PowerShell, or Bash) to automate manual security workflows, integrate APIs, and orchestrate incident response playbooks.
- SIEM & Detection Engineering: Build, optimize, and maintain custom detection rules and dashboards (e.g., Microsoft Sentinel, Defender) to detect advanced threat vectors.
- Cross-Border Collaboration: Act as the primary technical build partner to the global security architecture team in Paris, ensuring local US deployments align with corporate global standards.
Requirements
- Experience: 5+ years of dedicated experience in Security Engineering with a definitive, proven background in building and deploying security tools (not just monitoring alerts).
- Regulatory Knowledge: Solid understanding of data privacy laws, with hands-on experience structuring security controls to satisfy GDPR mandates.
- Cloud Infrastructure Depth: Advanced hands-on experience securing cloud environments, particularly the Microsoft Azure stack (Sentinel, Defender for Cloud, Intune) and/or AWS.
- Scripting capabilities: Proficient in at least one scripting language (Python, PowerShell) to build automated security utilities.
- Preferred Certifications: Possession of one or more of the following is highly desirable:
- CISSP (Certified Information Systems Security Professional)
- Microsoft Certified: Azure Security Engineer Associate (AZ-500)
- CIPP/E (Certified Information Privacy Professional/Europe-demonstrating GDPR mastery), * Prior experience in the Pharmaceuticals, Biotech, or Life Sciences sectors.
- Experience working in a decentralized team environment with European-headquartered parent corporations.
- Background securing specialized R&D or clinical laboratory environments.