Senior Associate, Security Engineer
USA - NJ - Parsippany (Webro Rd)
Full Time Senior-level / Expert USD 67K - 124K
ROLE SUMMARY
The Enterprise Platforms & Security (EP&S) organization delivers the following capabilities for Pfizer. Business application platforms supporting Pfizer’s enterprise application and critical business processes. Infrastructure allowing business traffic to travel where it needs to go, internally and externally, along with the appropriate access controls. EP&S secures Pfizer's most important information assets through world class controls and protections and enables Pfizer's business results by making security an enabler and not a roadblock to achieving business results.
The Digital Hosting Solutions (DHS) team represents the Digital Center of Excellence (CoE) for cloud infrastructure capabilities, providing foundational public and private cloud services to all business lines, globally across Pfizer. DHS is a high-performing team, focused on delivering secure, scalable, compliant, operationally viable, and cost-effective cloud solutions. Working within Digital Hosting Solutions is to be at the cutting edge of cloud technology within the context of the world’s leading biopharmaceutical organization, at a time when adoption of these technologies is increasing rapidly.
As a Senior Security Engineer, you will play a pivotal role in safeguarding Pfizer’s systems and data. Your deep expertise in cybersecurity will be instrumental in identifying potential vulnerabilities, developing robust security protocols, and responding to security incidents. You will work closely with various teams to integrate security measures into our technology infrastructure and promote a culture of security awareness across the organization. Your role will involve staying abreast of the latest cybersecurity threats and trends, ensuring our security strategies and practices are up-to-date and effective. Your leadership and technical skills will be crucial in strengthening our security posture and protecting our organization from cyber threats.
ROLE RESPONSIBILITIES
Pfizer Engineers must operate with the highest levels of integrity, as colleagues within DHS are often entrusted with the highest levels of access to development and production environments. The ability to protect confidential information, identify risks, mitigate non-compliance, and operate within defined policies & procedures is a must.
Security Protocols Development: Develop and implement robust security protocols to protect the organization's systems and data from potential threats.
Vulnerability Assessment: Conduct regular vulnerability assessments and penetration testing to identify potential weaknesses and implement necessary security measures.
Incident Response: Respond to security incidents promptly, mitigating risks and conducting thorough post-incident analysis to prevent future occurrences.
Security Integration: Collaborate with various teams to integrate security measures into the technology infrastructure, ensuring security is considered at all stages of development and deployment.
Security Awareness: Promote a culture of security awareness across the organization, providing training and guidance to staff on best practices in cybersecurity.
Threat Intelligence: Stay abreast of the latest cybersecurity threats and trends, ensuring the organization's security strategies and practices are up-to-date and effective.
Compliance: Ensure compliance with relevant security standards and regulatory requirements, conducting regular audits and making necessary adjustments to security protocols.
Leadership: Provide leadership and technical guidance to junior security engineers, fostering a collaborative and high-performing security team.
BASIC QUALIFICATIONS
Applicant must have a Bachelor’s degree with three years of relevant experience; OR Master’s degree with one year of relevant experience; OR Associate's degree with six years of relevant experience; OR eight years of relevant experience with a high school diploma or equivalent.
1+ years of experience developing and/or maintaining cloud security controls.
Knowledge of public and private cloud platforms (AWS, Azure, or Google Cloud).
Proficiency in at least one programming language, such as Python, Java, or Go.
Experience in Cloud Security Products such as Wiz, Palo Alto, Rapid 7, and/or native cloud security tools.
Excellent problem-solving skills, strategic thinking, and strong business acumen.
Excellent communication skills, both written and verbal, with the ability to present complex technical information in a clear and concise manner.
Demonstrated experience in an agile work environment possessing qualities such as a collaborative mindset, adaptability to change, and a proactive problem-solving approach.
PREFERRED QUALIFICATIONS
Master's degree in computer science, engineering, a related field or equivalent experience.
Certifications in cybersecurity, such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).
Experience with cloud security and understanding of relevant technologies and practices.
Familiarity with regulatory standards such as GDPR, ISO 27001, or HIPAA.
Experience in a leadership role, with the ability to guide and mentor junior security engineers.
Demonstrated ability to stay current with the latest developments in cybersecurity threats and trends.
Experience with security in DevOps and Agile environments.
NON-STANDARD WORK SCHEDULE, TRAVEL OR ENVIRONMENT REQUIREMENTS
Respond on short notice during normal working hours. Extended hours, weekends, and holidays may occasionally be required during critical events.
Limited travel may be required.
Other Job Details:
Last Date to Apply for Job: 4/24/2024
Work Location Assignment: Flexible. Must be able to work from assigned Pfizer office 2-3 days per week, or as needed by the business.
Relocation assistance may be available based on business needs and/or eligibility.
Sunshine Act
Pfizer reports payments and other transfers of value to health care providers as required by federal and state transparency laws and implementing regulations. These laws and regulations require Pfizer to provide government agencies with information such as a health care provider’s name, address and the type of payments or other value received, generally for public disclosure. Subject to further legal review and statutory or regulatory clarification, which Pfizer intends to pursue, reimbursement of recruiting expenses for licensed physicians may constitute a reportable transfer of value under the federal transparency law commonly known as the Sunshine Act. Therefore, if you are a licensed physician who incurs recruiting expenses as a result of interviewing with Pfizer that we pay or reimburse, your name, address and the amount of payments made currently will be reported to the government. If you have questions regarding this matter, please do not hesitate to contact your Talent Acquisition representative.
EEO & Employment Eligibility
Pfizer is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status. Pfizer also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA. Pfizer is an E-Verify employer. This position requires permanent work authorization in the United States.
Information & Business TechTags: Agile Audits AWS Azure CISM CISSP Cloud Compliance Computer Science DevOps GCP GDPR HIPAA Incident response ISO 27001 Java Pentesting Python Threat intelligence Vulnerabilities
Perks/benefits: Career development Flex hours Flex vacation Health care Medical leave Parental leave Relocation support Salary bonus Team events Transparency
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Engineer jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs