Job Description

Job Title: Lead Consultant - Cyber Security Engineer

Career Level: C2

Introduction to role

------------------------


Are you ready to disrupt an industry and change lives? Cybersecurity is a cornerstone of our IT strategy, and as we advance towards our objectives, we're seeking individuals who thrive on innovation to maintain a sustainable risk position against the evolving threat landscape. Do you understand the motivations and methods of attackers, whether they are organized crime syndicates or state-sponsored entities? In this pivotal role, you'll operate within AstraZeneca's global cybersecurity organization, collaborating and influencing multiple functions across a global network that spans China, India, Mexico, Sweden, the US, and the UK.

Accountabilities

Engineer cybersecurity solutions across cloud, on-premises, and third-party collaboration environments, with a predominant focus on cloud and data. Collaborate with other teams to perform, assess, and evolve IT processes intersecting with our cybersecurity priorities. Map governance and compliance frameworks to technical implementation, shifting hardening processes as far left as possible. Leverage understanding of threats, weaknesses, and vulnerabilities around cloud and data to assist other areas in responding promptly and effectively to contain breaches or address areas of concern.

Essential Skills/Experience

Must have broad enterprise IT experience with significant cloud and data exposure. Must have in-depth understanding of security and networking protocols, cryptography, and modern authentication and authorization protocols. Must have experience designing, deploying, and operating secure networks, systems, application and security architectures at scale. Must have experience configuring and managing cloud security services in an AWS organization at scale. Must have experience researching, designing, and implementing security policies, standards, and procedures, including those in cybersecurity frameworks such as MITRE ATT&CK, NIST CSF, NIST SP.800-53, and NIST SP.800-61, as well as implementing cloud security reference architectures. Should have experience working in a software development and systems administration organization, implementing DevSecOps and process automation. Should have the ability to conduct post-mortem on security incidents and take post-mortem data to drive uplift in policies, procedures, standards.

Desirable Skills/Experience

Identify and articulate architectural trade-offs. Embed process, governance and security into workflow and technology. Design and implement software tools and services using modern programming languages. Manage and lead projects delivering prioritized initiatives at challenging deadlines. Exert positive influence in a matrixed organization to drive technology evolution. Drive efforts to achieve process and technology improvement at scale.

When we put unexpected teams in the same room, we ignite bold thinking with the power to inspire life-changing medicines. In-person working gives us the platform we need to connect, work at pace and challenge perceptions. That's why we work, on average, a minimum of three days per week from the office. But that doesn't mean we're not flexible. We balance the expectation of being in the office while respecting individual flexibility. Join us in our unique and ambitious world.


AstraZeneca offers an environment where your work has a direct impact on patients by redefining our ability to develop life-changing medicines. We empower the business to perform at its peak by combining ground breaking science with leading digital technology platforms. Here you'll be part of a team that dares to lead by applying a problem-solving attitude to find opportunities across the enterprise. With investment behind us, there's no slowing us down as we drive cross-company change to disrupt the entire industry.


Ready to make a meaningful impact? Apply now to join us on this exciting journey!