• United Kingdom, Uk
  • Save Job
  • 0 - 3 Years
  • Posted : above 1 month

Job Description:

AstraZeneca are a global, science-led biopharmaceutical business whose innovative medicines are used by millions of patients worldwide We are increasing our focus on growth through innovation - being more patient-centric, doing more with technology, digital and data, and advancing more cutting-edge science Our key principals include

Accelerate innovative science Advancing high-potential late-stage pipeline projects, pursuing the next wave of disruptive biology and accelerating efforts in ML & AI, Data Science and Digital Technology
Deliver growth and therapy area leadership Driving growth, impacting and improving the whole patient journey and collaborating with the funders of healthcare and third parties

The focus on Digital, AI & ML, Data & Data Science along with joint ventures and collaboration with third parties are creating new opportunities within the IT security team Cyber security will need to be the cornerstone of our IT strategy as we move towards our future objectives

Were looking for IT security professionals that can help us on the journey through this challenging and ever-changing technology landscape Individuals who

Understand that security is a journey and not a destination Cyber security is not something that can be fixed, and we instead need to focus on innovation to maintain sustainable risk position against the evolving threat landscape
Understand that we cant just buy our way out of a cyber security problem Technology may win the battle, but it wont win the war
Understand that cyber security is not just dealing with over-enthusiastic teenagers We are potentially working against state-sponsored attacks and multi-billion dollar organized crime syndicates
Understand attackers, their motivations and their ways of working to be able to get ahead and keep ahead of them

Typical Accountabilities

In this role of Security Specialist Cloud & DevOps, youll operate within AstraZenecas Cyber Security and Infrastructure Services division to deliver quality services and solutions that meet both business and IT needs Youll need to collaborate with Business, Solution Delivery, Engineering, and Quality and Compliance functions across a global organisation spanning US, UK, Sweden, China, Japan, Poland, Mexico, India and beyond

The core accountabilities for the role include Architect, build, test and implement cyber security solutions for the organisation spanning Cloud, on-premise and third-party collaboration environments with the predominant focus on Cloud and DevOps enablement
Define principles, policies, standards and governance covering Cloud, DevOps, Corporate network connectivity, tooling, ways of working, application security standards, static and dynamic code review, penetration testing (both automated and manual / exploratory), monitoring (including Security Information and Event Management [SIEM]), mapping governance and compliance frameworks and controls to technical implementation, shifting hardening processes as far left as possible, network traffic inspection (including IDS / IPS)
Help define the future state of cyber security within the organisation, conduct review and gap analysis between current state and future state including existing measures and controls, and then work to uplift to align to the future state vision
Anticipate threats, identify weaknesses, and respond promptly and effectively to possible breaches or areas of concern with a focus on Cloud and DevOps
Continuous testing, continuous validation, continuous monitoring suitable and applicable to more modern and flexible ways of working
Anticipate the moves, tactics and motivations that hackers will use to try and gain unauthorized access to AstraZenecas technology assets Keeping on top of latest techniques but also maintaining a view of historical approaches as many of these are cyclical and get reused

Skills, Experience & Qualifications Must have an understanding of OWASP, documentation and artefacts
Must have large enterprise IT experience, ideally with significant Cloud and DevOps exposure
Able to influence at engineering, architecture, strategic and leadership levels
Development experience ideally with process automation and/or configuration management
Good understanding of agile methodologies
Security, compliance and regulatory experience in a public cloud environment
Experience and familiarity with a range of automated deployment tools
Excellent written and oral communication skills
Experience with anti-virus software, intrusion detection, firewalls and content filtering
Experience planning, researching and developing security policies, standards and procedures
Security administration and auditing across internal and external network and systems including IDS deployment and monitoring and system vulnerability auditing
Familiarity with Security technologies including Intrusion Detection and Prevention, Vulnerability scanning, firewalling/packet inspection, system integrity monitoring, etc
Familiarity with common attack techniques and their remediation/defence including DoS, DDoS, Social engineering, Virus, Malware, Vulnerability
exploitation, Phishing & Spear Phishing, Worms, Trojans, Rootkits, Ransomware, XSS, SQL Injection, Remote Command Execution, Session Hijacking, etc
Solid understanding of security protocols, cryptography, authentication, authorisation and network security implementations

Desirable Ability to implement and conduct static and dynamic code review process
Ability to implement and conduct penetration testing processes (both automated and manual / exploratory)
Security incident and event monitoring implementation (SIEM)
Understanding of authentication technologies and approaches

Profile Summary:

Employment Type : Full Time
Eligibility : Any Graduate
Industry : Biotechnology/Pharmaceutical/Medicine, Manufacturing/Industrial
Functional Area : IT Software : Software Products & Services
Role : System Security
Salary : As per Industry Standards
Deadline : 09th Jun 2020

Key Skills:

All rights reserved © 2018 Wisdom IT Services India Pvt. Ltd DMCA.com Protection Status