Senior Manager, Cloud Security

GlaxoSmithKline

  • Poznań, wielkopolskie
  • Stała
  • Pełny etat
  • 2 miesiące temu
Why GSK?GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. Getting ahead means preventing disease as well as treating it, and we aim to impact the health of 2.5 billion people around the world in the next 10 years.Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves – feeling welcome, valued and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.Senior Manager, Cloud SecurityWhy you?Build and maintain cloud security governance framework for multi-cloud environment including Microsoft Azure, GCP and AWS.Build and maintain a network of key stakeholders across security teams, central IT teams, business tech and developer groups to understand future state cloud requirements and roadmaps.Define and align cloud security standards, frameworks and policies with overall business and technology strategy and drive implementation of processes and tools to monitor and enforce compliance.Define and periodically review cloud service security controls and guidance documentation for all IaaS & PaaS services, balancing business objectives with information and cyber security requirements.Define security guidance and best practice for all IaaS & PaaS services to supplement security controls.Define and periodically review cloud service security controls and governance for sanctioned and unsanctioned SaaS platforms.Drive the cloud security conversation within cyber security office, central team and business unit senior stakeholders and workload owners.Provide cloud security architecture review for large scale cloud projects and platforms providing recommended changes or enhancements to ensure alignment with secure by design principles.Provide cloud security consultancy to cyber risk assurance and governance risk and compliance teams for solution architecture reviews.Identify and communicate current and emerging security threats.Maintain technical skills and knowledge, keeping up to date with market trends and competitive insightsQualifications & SkillsBasic Qualifications:Minimum of 8 years working as an information security professional and at least 3 years working as a cloud security professional.BSc level or equivalent education.Expert level security knowledge of Azure, GCP and AWS.Proven experience in security architecture and security by design reviews of cloud native solutions, leveraging containers, micro-services, APIs, PaaS capabilities such as data storage, databases and data processing technologies, and identity & access management suites on Azure, GCP and AWS.Proven experience of security reviews and threat modelling for cloud hosted solutions leveraging Generative AI cloud services.Demonstrated experience and understanding of cyber security principles, IT security controls, and related technologies and products.Demonstrated experience of network security related to cloud network virtualisation and associated security controls.Demonstrated experience of identity and access management related to securing cloud platforms and workloads.Strong stakeholder management skills.Strong verbal/written communication in English, with the ability to effectively interact with professionals at all levels of responsibility and authority, both technical and non-technical.Ability to work with virtual teams located in different countries around the world, aligning and adapting different work, culture, and communication styles.Preferred Qualifications:Security based industry certification such as ISC2 CISSPPharmaceutical industry experience would be a benefit but not essential.Cloud agnostic industry certification in cloud security such as ISC2 CCSP and/or CSA CCSKCloud Service Provider security certifications such as Microsoft AZ-500, Google Security Engineer, AWS Security EngineerExperience with SABSA and ArchimateBenefits:Career at one of the top tier global healthcare companiesAttractive reward package (competitive salary, annual bonus & awards for outstanding performance, recognition awards for additional achievements and engagement, holiday benefitPossibilities of development within the role and company’s structureLife insurance and pension planOpen and broad environment which is encouraging and welcoming of all diversity strands (gender, race, ethnicity, sexuality, disability, or any other characteristic)Private medical package with additional preventive healthcare services for employees and their eligible counterpartsSports cards (Multisport)Personalized learning approach (mentoring, online trainings’ platforms: Pluralsight, Business Skills, Harvard Manage Mentor, Skillsoft and external trainings)Extensive support of work life balance (flexible working solutions including working from home possibilities, health & wellbeing activities)Supportive community and integration eventsModern office with creative rooms, fresh fruits everydayFree car and bike parking, locker rooms and showers#LI-GSK
#GSKcsoG6Why Us?GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organization where people can thrive. Getting ahead means preventing disease as well as treating it, and we aim to positively impact the health of 2.5 billion people by the end of 2030.Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a workplace where everyone can feel a sense of belonging and thrive as set out in our Equal and Inclusive Treatment of Employees policy. We’re committed to being more proactive at all levels so that our workforce reflects the communities we work and hire in, and our GSK leadership reflects our GSK workforce.If you require an accommodation or other assistance to apply for a job at GSK, please contact the GSK Service Centre at 1-877-694-7547 (US Toll Free) or +1 801 567 5155 (outside US).GSK is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class.Important notice to Employment businesses/ AgenciesGSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK’s compliance to all federal and state US Transparency requirements. For more information, please visit GSK’s Transparency Reporting site.

GlaxoSmithKline

Podobne oferty pracy

  • Senior Technical Implementation Manager

    Scalo

    • Poznań, wielkopolskie
    Jesteśmy firmą technologiczną. Realizujemy projekty. Budujemy zespoły. Zapewniamy specjalistów do projektów. Za pomocą technologii wspieramy wzrost biznesowy naszych Klientów ora…
    • 25 dni temu

  • Senior Technical Implementation Manager

    Scalo

    • Poznań, wielkopolskie
    Jesteśmy firmą technologiczną. Realizujemy projekty. Budujemy zespoły. Zapewniamy specjalistów do projektów. Za pomocą technologii wspieramy wzrost biznesowy naszych Klientów ora…
    • 25 dni temu

  • Senior Technical Implementation Manager

    Scalo

    • Poznań, wielkopolskie
    Jesteśmy firmą technologiczną. Realizujemy projekty. Budujemy zespoły. Zapewniamy specjalistów do projektów. Za pomocą technologii wspieramy wzrost biznesowy naszych Klientów ora…
    • 23 dni temu