Specialist Cloud Security Engineer

Join our team at AMGEN Capability Center Portugal the #1 company in Best Workplaces (201500 employees category) in 2024 by the Great Place to Work Institute. With over 400 talented individuals from more than 40 nationalities our Lisbon center thrives at the intersection of innovation excellence and inspiration. This is your opportunity to explore the future of healthcare through technology and digital innovation supporting our mission To Serve Patients.

SPECIALIST CLOUD SECURITY ENGINEER

At AMGEN Technology isnt just a support functionits a catalyst for discovery transformation and real-world impact. Here your ideas fuel innovation that improves and saves lives of patients in dire need of our medicines. Are you ready to do meaningful work that matters

LIVE

What you will do

AMGEN is seeking a Specialist Cloud Security Engineer to join Amgens Cloud Security organization who will be reporting into the Global Information Protection Organization in Amgen and will be based in Lisbon PRT at Amgens new Capability Center.

As a Specialist Cloud Security Engineer you will be providing remediation strategies and executing project activities to complete tactical objectives. You will play a key role in designing deploying and maintaining solutions automate security assessments audits policy and standard enforcements and more.

Key responsibilities:

• Design and implement secure cloud architectures ensuring alignment with enterprise security frameworks and regulatory requirements.

• Develop and enforce cloud security controls including IAM policies network segmentation encryption standards and key management (KMS HSM) to safeguard data and workloads.

• Continuously assess cloud configurations using automated compliance and vulnerability management tools to identify misconfigurations and security risks.

• Develop and maintain Infrastructure-as-Code (IaC) templates (e.g. Terraform CloudFormation) with embedded security guardrails and policy-as-code enforcement.

• Integrate cloud-native logging and monitoring services (e.g. AWS CloudTrail Azure Monitor GCP Cloud Logging) into centralized SIEM platforms for threat detection and analysis.

• Collaborate with DevOps and application teams to embed security into CI/CD pipelines and implement automated scanning secrets management and dependency validation.

• Respond to cloud-related security incidents conduct forensic investigations and implement remediations to prevent recurrence and strengthen detection mechanisms.

• Conduct threat modeling and risk assessments for new cloud solutions and emerging services ensuring alignment with organizational risk appetite and compliance standards.

• Research and evaluate emerging cloud technologies and security tools to enhance resilience efficiency and automation across cloud environments.

• Develop and maintain technical documentation runbooks and operational standards for cloud security processes controls and procedures.

• Provide expert guidance and training to engineering operations and product teams on secure cloud design principles and best practices.

• Lead efforts and participate in audits covering information security services and technologies.

• This position requires after hours responsibilities and may require some travel.

WIN

What we expect of you

We are all different yet we all use our outstanding contributions to serve patients. The professional we seek is a versatile person with these qualifications.

• Strong command of security foundations e.g. authentication authorization confidentiality integrity and availability.

• Solid understanding of security principles such as the principle of least privilege or economy of mechanism.

• Good working knowledge of cryptography e.g. key management symmetric and asymmetric encryption.

• Comprehensive experience with Amazon AWS understanding of Identity and Access Management Data Protection Secure DevOps Security Operations and other security domains for Cloud.

• Working/Emerging knowledge of Enterprise Cloud Solutions across IaaS PaaS & SaaS. This may include: AWS Azure OpenStack Cloud Foundry Salesforce Microsoft Office 365 Box etc.

• Emerging Knowledge of Identity Governance Cloud SOC/SIEM Public Private and Hybrid cloud solutions.

• Good hands-on experience with AWS foundation services related to compute network storage content delivery administration and security deployment and management automation technologies.

• Technical experience with micro services programming (AWS Lambda Docker etc.).

• Experience using AWS Cloud Services (EC2 DynamoDB API Gateway RDS Lambda CloudFront CloudFormation CloudWatch Route 53 etc.).

• Extensive experience in architecting designing and programming applications and RESTFUL Services in an AWS Cloud environment.

• Experience architecting highly available systems that utilize load balancing horizontal scalability and high availability.

• Experience in one of the following: Java/ policy language.

• Good verbal and written communication skills.

• Team-oriented placing priority on successful completion of team goals.

• Self-starter with a high degree of initiative.

• CISSP or equivalent security-related industry certifications.

• AWS Certified Professional or higher.

Basic Qualifications:

• Minimum Education - High School diploma. (Ideally a Bachelor degree on a related career field).

• Ideally /- 5 years of Information Security or Information Technology experience.

THRIVE
What you can expect of us

As we work to develop treatments that take care of others we also care deeply for our teammates well-being and growth.

• Work That Matters Build tech that accelerates scientific breakthroughs and helps patients worldwide.

• Modern Tech Stack Cloud-first automation-focused AI-powered.

• Global Scale Agile Mindset Collaborate across continents while working in nimble high-impact teams.

• Continuous Learning Access to certifications trainings mentorship and career mobility.

• Amgen Total Rewards Plan Comprehensive benefits in healthcare finance and well-being.

• Flexibility Hybrid work model with time split between our Lisbon office and remote work.

APPLY NOW

Objects in your future are closer than they appear. Join us.

EQUAL OPPORTUNITY STATEMENT

AMGEN is an Equal Opportunity employer and will consider you without regard to your race color religion sex sexual orientation gender identity national origin protected veteran status or disability status.

We will ensure that individuals with disabilities are provided a reasonable accommodation to participate in the job application or interview process to perform essential job functions and to receive other benefits and privileges of employment. Please contact us to request an accommodation