Job Title - Lead Consultant Cybersecurity Engineering – Network and Endpoint Security

Career Level - E

Leverage technology to impact patients and ultimately save lives

Do you have expertise in, and passion for, information technology? Would you like to apply your expertise to impact the IT strategy in a company that follows the science and turns ideas into life changing medicines? If so, AstraZeneca might be the one for you!

ABOUT ASTRAZENECA

AstraZeneca is a global, science-led, patient-focused biopharmaceutical company that focuses on the discovery, development and commercialisation of prescription medicines for some of the world’s most serious disease. But we’re more than one of the world’s leading pharmaceutical companies. At AstraZeneca we’re dedicated to being a Great Place to Work.

ABOUT OUR IT TEAM

It’s a dynamic and results-oriented environment to work in – but that’s why we like it. There are countless opportunities to learn and grow, whether that’s exploring new technologies in hackathons, or redefining the roles and work of colleagues, forever. Shape your own path, with support all the way. Diverse minds that work cross- functionally and broadly together.

Cybersecurity is key to our IT strategy as we move towards our future objectives. We are looking for IT security professionals that can help us on the journey through this challenging and ever-changing technology landscape.

We are looking for Individuals who:

· Understand that security is a journey and not a destination.

· Understand that we cannot just buy our way in cybersecurity.

· Focus on innovation to maintain a sustainable risk position against the evolving threat landscape.

· Understand that we could be working against organized crime syndicates or state-sponsored attackers.

· Understand attackers’ motivations and their ways of working.

Accountabilities

In this role you will operate within AstraZeneca’s global cybersecurity organization to deliver quality services and solutions that meet both business and IT needs. You will need to collaborate and influence multiple functions across a global organisation spanning Mexico, US, UK, Sweden, China, India and beyond.

The core accountabilities for the role include:

· Engineer cybersecurity solutions spanning cloud, on-premises, and third-party collaboration environments, with a predominant focus on network and endpoint security.

· Collaborate with other teams in performing, assessing, and evolving IT processes that intersect any of our cybersecurity priorities.

· Map governance and compliance frameworks and their controls to technical implementation, shifting hardening processes as far left as possible.

· Leverage understanding of threats, weaknesses, and vulnerabilities around network and endpoint security to assist other areas in responding promptly and effectively to contain breaches or to address areas of concern.

· Contribute to defining the future state of cybersecurity within the organisation by conducting gap analysis between our current state and the desired state for tools and services around network and endpoint security.

Qualifications and Experience

· Must have large enterprise IT experience, ideally with significant networking and endpoint security exposure.

· Must have experience designing, deploying, and operating secure networks, systems, devices, and security architectures at scale.

· Should have experience working in a systems administration organization – ideally implementing process automation.

· Must have experience researching, designing, and implementing security policies, standards, and procedures, including those in cybersecurity frameworks such as MITRE ATT&CK, NIST CSF, NIST SP.800-53, and NIST SP.800-61, as well as implementing network security reference architectures.

· Solid understanding of security protocols, cryptography, identity management and access control.

· Must have solid experience configuring and managing network security services, including firewalling, email security, and endpoint security.

· Ability to conduct post-mortem on security incidents and take post-mortem data to drive uplift in policies, procedures, standards.

· Experience with SIEM, CSPM, DSPM, IDS, XDR, SOAR technologies.

· Familiarity with common attack techniques and their remediation or defence including social engineering, phishing, worms, trojans, rootkits, ransomware, XSS, SQL injection, remote command execution, session hijacking, DDoS, etc.

· Must have strong experience identifying, deploying, and managing network security services, ideally with exposure to a multi-cloud environment spanning AWS, GCP and Azure.

· Solid understanding of advanced networking configurations for hybrid-cloud in AWS, leveraging transit gateways and direct connect links.

· Knowledge of business continuity, risk assessment, disaster recovery, and computer forensics.

Skills & Capabilities

· Manage and lead projects delivering prioritised initiatives at challenging deadlines.

· Ability to positively exert influence in a matrixed organization to drive technology evolution.

· Ability to identify and articulate architectural trade-offs when choosing network and endpoint security services.

· Ability to embed process, governance and security into workflow and technology.

· Design and implement software tools and services using modern scripting languages.

· Strong drive to push for process and technology improvement at scale.

WHY JOIN US?

We’re a network of high-reaching self-starters who contribute to something far bigger. We enable AstraZeneca to perform at its peak by delivering premier technology and data solutions.

We’re not afraid to take ownership and run with it. Empowered with unrivalled freedom. Put simply, it’s because we make a significant impact. Everything we do matters.

SO, WHAT’S NEXT?

Are you already envisioning yourself joining our team? Good, because we’d love to hear from you! Click the link to apply and we’ll be in touch as soon as we can.

WHERE CAN I FIND OUT MORE?

Our Social Media, Follow AstraZeneca on LinkedIn https://www.linkedin.com/company/1603/

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status

Date Posted

Closing Date

AstraZeneca embraces diversity and equality of opportunity. We are committed to building an inclusive and diverse team representing all backgrounds, with as wide a range of perspectives as possible, and harnessing industry-leading skills. We believe that the more inclusive we are, the better our work will be. We welcome and consider applications to join our team from all qualified candidates, regardless of their characteristics. We comply with all applicable laws and regulations on non-discrimination in employment (and recruitment), as well as work authorization and employment eligibility verification requirements.