Amgen Senior Associate - IS Security Engineer - Security Monitoring in Bucharest, Romania

This Specialist will be part of the Information Security team responsible for delivering security services across Amgen globally focusing on Information Security Technology and Engineering services and technologies but may support other areas like Risk Management, Security Operations and Incident Response. The Specialist is flexible in handling different and multiple technologies as the environment changes. Areas of responsibility include:

  • Management and implementation of technologies and processes relating to assigned Information Security capability including issue identification and resolution, integration with other tools, documentation, gap assessment, gap resolution and continuous improvement of the capability

  • Keep up-to-date, make recommendations, and participate in the implementation and continuous improvement of technologies and services in assigned information security domains

  • Work with and provide guidance to Security Operations and other Information Security team activities on security strategies, processes, response and technologies

  • Support Incident Response on security incidents including contributing to mock security incident exercises

  • Define, provide, and improve measurement and analysis on the assigned services including the use of appropriate applications and tools for reporting

  • Develop or participate in the development of business cases and presentations on information security technologies of interest to Amgen

  • Advise project teams, application owners, and other Information Security teams (like Identify) on information security controls

  • Perform security design consulting in support of projects including participation to security architecture reviews as necessary

  • Participate in projects or initiatives where an Information Security Engineer is needed with a focus on ensuring inclusion of information security requirements

  • Provide mentorship and training on areas of expertise to Information Security and Amgen teams

  • Collaborate, maintain and build relationships with Amgen and other parties that may impact Information Security services and technologies

  • Participate in audits covering information security services and technologies

  • Participate in proactive research and provide recommendations for continuous improvement on information security technologies, processes and services

  • Participate in on-call and perform appropriate escalation of problems and issues

Specialist Information Security Engineers will also present project status reports to senior management, adhere to policies and practices relative to technical guidelines and change management processes, and may contribute to the development of new policies and practices by suggesting innovative ideas.

Domestic and International travel up to 10%.

Basic Qualifications

Doctorate degree

OR

Master's degree and 3 years of Information Security OR Information Technology experience

OR

Bachelor's degree and 5 years of Information Security OR Information Technology experience

OR

Associate's degree and 10 years of Information Security OR Information Technology experience

OR

High school diploma / GED and 12 years of Information Security OR Information Technology experience

Preferred Qualifications

  • Strong demonstrated knowledge and experience on continuous security monitoring with technologies and solutions like Syslog, Security Information and Event Management (SIEM), User and Entity Behavior Analytics (UEBA), etc.

  • Demonstrated knowledge and experience in one or more Information Security capability like security monitoring, endpoint protection, incident response or technical security assessments.

  • Experience in using and managing Linux-based operating systems and developing Perl or Python scripts

  • Experience in complex enterprise environments and current technology areas like cloud and mobility

  • Practical Knowledge of Information Security standards and policies like ISO 27001/27002, NIST, and others

  • Excellent verbal and written communication skills

  • Demonstrated success in leading multi-functional initiatives without formal authority through the use of strong influencing and negotiating skills

  • Effective working with global, virtual teams

  • Successful management of multiple priorities

  • Team-oriented, placing priority on the successful completion of team goals

  • Self-starter with a high degree of initiative

  • Highly motivated and able to work effectively under minimal supervision

  • Excellent analytical and troubleshooting skills

  • Experience with technical documentation as it relates to the delivery of information security services in a regulated environment

  • 2+ years as a security engineer supporting a multinational organization

  • CISSP, Comptia Security+ or equivalent security-related industry certifications