Cloud Security Engineer

Roche fosters diversity, equity and inclusion, representing the communities we serve. When dealing with healthcare on a global scale, diversity is an essential ingredient to success. We believe that inclusion is key to understanding people’s varied healthcare needs. Together, we embrace individuality and share a passion for exceptional care. Join Roche, where every voice matters.

And as the world evolves, so do we. For over 125 years, we have taken on some of the most complex challenges in healthcare.

At Roche, we foster a diversity of scientific approaches and embrace innovative ideas. Combining that with the seamless integration of our capabilities in Roche Pharma and Roche Diagnostics, we are uniquely positioned to achieve medical breakthroughs for patients and society. With our global spread of research, diagnostics and pharma development, data analytics and genomic insight teams, we are all working to translate science and research into groundbreaking therapies and diagnostics.

The Opportunity:

As a Cloud Security Engineer, you will be part of the Information Systems Security team at Roche. We are a team of 40 engineers distributed across the globe with expertise in Cloud Security, Endpoint Protection, Network Security, Remote Access Management, etc.

In your day to day work, you will collaborate with a cross-functional product team to develop, operate and improve the platform and security capabilities needed to support the variety of solutions Roche is building in the Cloud. You will also work with the wider engineering team to bring solutions to challenges, while ensuring security is met at all times. You will work closely with the engineering teams to explain potential attack vectors and provide remediation recommendations.

• 
  Collaborate with the team to enhance the security features and engineering capabilities of the Roche Cloud Platform, including automated deployment pipelines, secure controls, and abstraction layers to facilitate Cloud adoption.

• Utilize coding skills to implement automated security solutions and reduce manual operations.

• Participate in all stages of the software development lifecycle, from gathering requirements and discussing with the Product Owner/Customer to implementing and deploying security features using CI/CD.

• Serve as a security consultant and advocate for the Roche Cloud Platform.

• Contribute to software security architecture and provide insights for propositions, product designs, and service enhancements.

• Apply standard security frameworks for gap analysis and collaborate with the platform team and customers for resolution.

• Work with engineering teams to enhance security across the platform.

Who you are:

• 5-7 years of IT experience with a minimum Bachelors or equivalent work experience.

• A minimum of 3 years of experience in security and a minimum of 3 years of experience in AWS Cloud. Familiarity with other clouds like GCP, Azure or Alicloud is nice to have.

• Hands on experience with fundamental AWS cloud services such as networking, storage, database, and computing.

• Understanding of AWS security architecture design and the capability to develop reference implementations.

• Demonstrated hands-on experience in creating and implementing security features at a large scale in multi-tenant platforms using AWS native security services like GuardDuty, Security Hub, as Code etc.

• Understanding of the software development lifecycle, including CI/CD for deploying security mechanisms.

• Proficiency in Git, Terraform, and Python, and familiarity with Jenkins and Rundeck.

• Excellent collaboration skills and the ability to collaborate with engineering teams to improve security practices.

• Experience with agile methodologies and problem-solving and decision-making skills with experience in data analysis and using insights to drive decision-making.

Relocation benefits are not available for this job posting.

At Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Working together, we’ve become one of the world’s leading research-focused healthcare groups. Our success is built on innovation, curiosity and diversity.

Roche Pharma Canada has its office in Mississauga, Ontario and employs over 850 employees. The Mississauga facility is bright, vibrant, fosters collaboration and teamwork, and is reflective of Roche's truly innovative culture.

As of January 4, 2022, Roche requires all new employees who work in Canada to be fully vaccinated against COVID-19 on the date they take office. This requirement is a condition of employment at Roche that applies regardless of whether the position is on a Roche campus or remotely. If you have a valid reason for not being fully immunized, which is limited to certain specific medical reasons or other valid reasons protected by applicable human rights laws, you may request an exemption and / or adaptation measures regarding this vaccination requirement.