Amgen is seeking an Incidence Response Security Engineer.
who will report to the Senior Manager, Information Systems, and will be based remotely within the United States.
At Amgen, our mission is simple: to serve patients.
Leading Amgens Cyber Security Organization, the Incidence Response Security Engineer engages with key business and operational partners in enhancing the detection, response, and remediation of cyber related attacks on Amgens global enterprise while contributing and delivering services and projects that support the mission, priorities, and objectives of the organization.
The Incident Response Security Engineer will be part of a global team and is responsible for building services around incident identification, containment, eradication, recovery, and lessons learned.
You will be directly responsible for organizing, training and equipping Amgen employees and contractors in a manner directly aligned with Amgens culture, principles, and core values.
In the capacity of Incident Response Security Engineer, you will craft and oversee standard operating procedures, field manuals, and operating instructions.
As part of the investigation or remedial processes you will have to engage with key business and operational partners in managing the detection, response, and remediation of cyber related attacks on Amgens global enterprise.
The Incident Response Security Engineer is a leader in Amgens Digital Forensics & Incident Response team and is expected to contribute to and deliver services and projects that support the mission, priorities, and objectives of the organization.
In this vital role you will: Key Activities of the Incident Response Security Engineer: Lead Incident Response (IR) Operations and to ensure continuity of 24/7 security services.
Develop strategy and continuous improvement for Global Incident Management Program in accordance with industry frameworks (e.g., SANS PICERL) Fulfills critical role as Incident Response Commander directly responsible for IR activities Provides direction and guidance for workforce job proficiency by establishing and maintaining a comprehensive professional development plan Deliver accurate incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring Ensure SLA compliance and process consistency to achieve operational objectives Revise and develop processes to strengthen Security Operations Lead coordination efforts with necessary partners to better understand activity or actions and their impact to Amgen’s environment.
Maintain and upkeep relevant playbooks for response Translate complex technical incidents into business language and be able to present the same to different audiences Demonstrate, integrate, and collaborate on enhancing existing information security solutions and services to address any gaps or deficiencies in the CSOC to address security risks.
Expertise in digital network/host analysis, media forensics, malicious file analysis to support Incident Response activities.
Ability to utilize malicious concepts/theories to locate areas on improvement in the enterprises defensive and host environment.
Ability to collaborate with a Security Orchestration, Automation, and Response (SOAR) team, and enhance automated detection and response capabilities.
Collaborate with other Information Security teams and provide CSOC insight to where limited information security controls or solutions are present Lead efforts to integrate critical CSOC data into Information Securitys metrics program to enable critical strategic, operational, and tactical decisions making Provide mentorship and training on areas of expertise to Information Security and Amgen teams Collaborate, maintain, and build relationships with Amgen and other parties that may impact Cybersecurity services and technologies Basic Qualifications We are all different, yet we all use our unique contributions to serve patients.
The incident response professional we seek is a great coordinator with these qualifications: Doctorate degree in Engineering, Information Systems, or Computer Science & 2 years of directly related experience OR Masters degree in Engineering, Information Systems, or Computer Science & 5 years of directly related experience OR Bachelors degree in Engineering, Information Systems, or Computer Science & 7 years of directly related experience OR associate degree in Engineering, Information Systems, or Computer Science & 9 years of directly related experience OR Highschool/GED (or equivalent) graduate & 12 years of directly related experience.
Preferred Qualifications 12 years as an Incident Response analyst supporting a multinational organization Experience working with Agile principles and values Practical DFIR experience in AWS and Operations Technology (e.g., Purdue model layers 0-3.5) Excellent written and verbal communication skills to diverse target audiences Passionate, collaborative and results oriented Comprehensive knowledge of the workings of security-related controls like firewalls, intrusion detection systems, anti-malware, secure gateways, security monitoring, data encryption and other industry-standard techniques and practices.
Extensive experience with security application tools and systems, i.e., CrowdStrike, QRadar, CyWare, Office 365 Security Tools Demonstrated ability to coordinate/lead multiple projects/activities with competing priorities Excellent data-driven problem solving and analytical skills and proven experience within high performance team.
Skill in applying analytical ability; and communication techniques sufficient to present new or updated plans and procedures to Leadership for review, and final approval with the expectation of little to no rework.
Must be team-oriented, placing priority on the successful completion of team goals.
Must be highly motivated and able to work effectively under minimal supervision Experience with regulated systems (GxP, SOX) in the pharmaceutical, biotechnology, healthcare industry Demonstrated knowledge of digital network telecom including TCP/IP and related network protocols, Information Security standards and policies such as: ISO 27001/27002, NIST Preferred Certifications (Minimum one of the certificates is a plus): CISSP, GNFA, GCIH, GCFE, GCFA, GRID, AWS Security Specialist, or equivalent certification.
Amgen focuses on areas of high unmet medical need and leverages its expertise to strive for solutions that improve health outcomes and dramatically improve peoples lives.
A biotechnology pioneer since 1980, Amgen has grown to be one of the worlds leading independent biotechnology companies, has reached millions of patients around the world and is developing a pipeline of medicines with breakaway potential.
The invaluable contributions of our talented Amgen team will help us develop the vital and innovative medicines that treat serious illness and unmet medical needs around the globe.
Join Us If you’re seeking a career where you can truly make a difference in the lives of others, a career where you can work at the absolute forefront of biotechnology with the top minds in the field, you’ll find it at Amgen.
Amgen, a biotechnology pioneer, discovers, develops and delivers innovative human therapeutics.
Our medicines have helped millions of patients in the fight against cancer, kidney disease, rheumatoid arthritis and other serious illnesses.
As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other but compete intensely to win.
Together, we live the Amgen values as we continue advancing science to serve patients.
Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment.
Please contact us to request accommodation.
Amgen requires all staff in the United States, Puerto Rico and Canada to be vaccinated from COVID 19 as a condition of employment.
In accordance with applicable law, Amgen will provide reasonable accommodations to staff members who qualify on the basis of a medical reason or a sincerely held religious belief, practice, or observance.
Such accommodation may not pose an undue hardship to Amgen, its operations, or its staff.