Full Job Description
Help us improve access to life-changing therapies that can transform human health
We are Cytiva, a global provider of technologies and services that advance and accelerate the development and manufacture of therapeutics. Formally part of GE Healthcare, we have a rich heritage tracing back hundreds of years, and a fresh beginning since 2020.
Our customers undertake life-saving activities. These range from fundamental biological research to developing innovative vaccines, biologic drugs, and novel cell and gene therapies. Our job is to supply the tools and services – the pots, pans, soups and sauces – they need to work better, faster and safer, leading to better patient outcomes.
We are looking for an IT Security Engineer to work with our expert Information Technology team across the world. Do you have a passion for supporting IT Security systems? Then we would love to hear from you.
What you’ll do
Under the guidance of the Architect of IT Security, the IT Security Engineer is responsible for designing, implementing and maintaining a cycle of continuous improvement of the core infrastructure and platform protection systems and services.
Must be able to perform hands-on tier-3 support for a wide range of security technologies.
Respond to timely security event notifications from the security operations center according to SLA
Must be able to provide Information Security related guidance and recommendations to internal stakeholders
Work closely with various internal stakeholders to review, recommend and engineer security technologies in line with corporate information security program.
Collaborate with Corporate and Operating Company Information Security teams to drive Information Security projects.
Participate in vulnerability assessments and penetration testing activities.
Develop detailed designs for implementation of key security infrastructure upgrades and platform recommendations.
Define implementation and testing procedures.
Provide inputs for formulating security architecture recommendations and design of security services.
Ensure adherence to best practices in accordance with information security best practices, industry standards, and corporate policies and procedures.
Participate in User Awareness initiatives.
Lead large, complex projects and manage resources effectively
Participate in various projects as required.
Develop and maintain appropriate Information Security technical documentation as well as providing reviews and updates of existing policies and procedures.
Identify opportunities and recommend solutions for improving service, efficiency and effectiveness.
Perform Information Security analysis and provide metrics and reporting as required.
Provide timely updates to Management regarding projects currently taking place.
Stay up-to-date with latest techniques and technology.
Ensures compliance with all audit requirements including change control procedures and data security.
Provide 24x7 support as appropriate.
Who you are
5 years of demonstrated experience as an information security engineer.
Working knowledge of various privacy, risk, security standards and practices.
Experience in working with server & endpoint security platform (AV, encryption, HIPS, etc.), firewalls, intrusion prevention, enterprise security event log management, two factor authentication, OS/platform security standards, vulnerability management, data loss prevention and patch management.
Experience working in a security operations center; investigating, responding and/or triaging security events.
A proven track record in identifying, selecting and deploying common security tools and products.
Strong interest and knowledge of security technologies and trends.
Strong written and verbal communication skills.
Ability to manage and prioritize multiple tasks and projects.
Progressive experience leading projects in size and complexity.
Experience working in collaborative, team-oriented environments with commitment to results and a proven track record of accomplishments.
CEH, GCIH/GCIA/GPEN, CISSP or other equivalent security certification desired.
Cisco, Microsoft, AWS and other vendor certifications a plus.
Experience with two or more of following vendor solutions a plus:
Crowdstrike, McAfee (Web Gateway, DLP, ePO, NSM), Forcepoint (Websense, DLP, NGFW), Nexpose, Nessus, Metasploit, Carbon Black, Zscaler, Splunk
Experience with Unix/Linux systems is desired, demonstrated experience with Python and/or Perl considered a plus.
Bachelor’s degree in Computer Science or Information Systems, or the equivalent combination of education and training.
Up to 20% travel may be required.
Who we are
Whatever your role, we bring purpose and challenge into our everyday work. If you are driven to make the world a better place thanks to science and medicine, you will feel right at home here. If you’re flexible, curious and relentless, you’ll belong. If you are excited about a global culture, this can be the place to further your career.
Want to know more? Experience life at Cytiva on our Careers website , Instagram channel and LinkedIn page !
Cytiva is a 3.5 billion USD global life sciences leader with over 7000 associates across 40 countries who are dedicated to our mission to help us improve access to life-changing therapies that transform human health. As a trusted partner to customers that range in scale and scope. Cytiva brings efficiencies to research and manufacturing workflows, ensuring the development, manufacture and delivery of transformative medicines to patients.