Principal Cloud Security Assurance

Why GSK?

At GSK, we have already delivered unprecedented change over the past four years, improving R&D, becoming a leader in Consumer Health, strengthening our leadership, and transforming our commercial execution. Now, we’re making the biggest changes we’ve made to our business in over 20 years. We’re on track to separate and create two new companies in 2022: New GSK with a leading portfolio of vaccines and specialty medicines as well as R&D based on immune system and genetics science; and a new world-leading consumer healthcare company of loved and trusted brands.​

​

With new ambition comes new purpose. For New GSK, this is to unite science, talent and technology to get ahead of disease together – all with the clear ambition of delivering human health impact; stronger and more sustainable shareholder returns; and as a new GSK where outstanding people thrive.​

​

Getting ahead means preventing disease as well as treating it. How we do all this is through our people and our culture. A culture that is ambitious for patients – so we deliver what matters better and faster; accountable for impact – with clear ownership of goals and support to succeed; and where we do the right thing. So, if you’re ready to improve the lives of billions, join us at this exciting moment in our journey. Join our challenge to get Ahead Together. ​

Key Responsibilities

• Ensure all Cloud Security Assurance services are delivered within agreed timelines.
• As services transition to BAU, ensure appropriate resourcing for the service and identify improvements as necessary.
• Engage with senior stakeholders including GP&T, Security Architecture & GRC.
• Ensure cloud policies are adhered to and within risk appetite.
• Identify automation possibilities with a focus on driving security without manual intervention.
• Become the single point of contact for any cloud security assurance queries.
• Management of third party outsource provider, ensuring SLA’s are maintained and SoW is followed.
• Provide cloud security consultancy for projects on an ad-hoc basis. 

Basic qualifications:

• Experience with Cloud Security Assurance with multiple Cloud Service Providers (Azure, AWS, GCP)
• Experience with managing cloud security assurance services. Have prior experience working with CSPM roles.
• Experience leading and developing others, including all activities associated with people management (Performance reviews etc)
• Demonstrated experience and understanding of cyber security principles, IT security controls, and related technologies and products
• Prior experience in conducting Cloud Security risk assessments.
• Stakeholder/ internal business management experience
• Strong verbal/written communication in English, with the ability to effectively interact with professionals at all levels of responsibility and authority
• Work with virtual teams located in different countries around the world, aligning and adapting different work, culture and communication styles
• Must have strong leadership capabilities with a key focus on developing others and developing the services within their remit.
• Ideally have industry qualifications such as Certified Cloud Security Professional (CCSP) and/or Cloud specific qualifications.
• Hands-on experience working with Cloud Security Posture Management and Cloud Access Security Broker.

Why Us?

GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organization where people can thrive. Getting ahead means preventing disease as well as treating it, and we aim to positively impact the health of 2.5 billion people by the end of 2030.

Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a workplace where everyone can feel a sense of belonging and thrive as set out in our Equal and Inclusive Treatment of Employees policy. We’re committed to being more proactive at all levels so that our workforce reflects the communities we work and hire in, and our GSK leadership reflects our GSK workforce.

Important notice to Employment businesses/ Agencies

GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.

It has come to our attention that the names of GlaxoSmithKline or GSK or our group companies are being used in connection with bogus job advertisements or through unsolicited emails asking candidates to make some payments for recruitment opportunities and interview. Please be advised that such advertisements and emails are not connected with the GlaxoSmithKline group in any way.

GlaxoSmithKline does not charge any fee whatsoever for recruitment process. Please do not make payments to any individuals / entities in connection with recruitment with any GlaxoSmithKline (or GSK) group company at any worldwide location. Even if they claim that the money is refundable.

If you come across unsolicited email from email addresses not ending in gsk.com or job advertisements which state that you should contact an email address that does not end in “gsk.com”, you should disregard the same and inform us by emailing askus@gsk.com, so that we can confirm to you if the job is genuine.