Senior SIEM Engineer

SIEM ENGINEER

At AMGEN Technology isnt just a support functionits a catalyst for discovery transformation and real-world impact. Here your ideas fuel innovation that improves and saves lives of patients in dire need of our medicines. Are you ready to do meaningful work that matters

LIVE

WHAT YOU WILL DO

As a SIEM Engineer you will play vital role you will serve as a technical leader and subject matter expert driving AMGENs global security monitoring and detection strategy. You will architect enhance and optimize SIEM and UEBA platforms to deliver advanced scalable and automated detection capabilities across hybrid and cloud environments. You will collaborate closely with cross-functional teams to embed monitoring and detection into the enterprise technology ecosystem ensuring comprehensive visibility and rapid threat response.

You will guide junior engineers lead complex integrations and champion automation analytics and threat detection maturity across the organization.

Lets do this. Lets change the this vital role you will:

• Lead the design deployment and continuous improvement of AMGENs SIEM and UEBA platforms ensuring reliable and high-performing monitoring capabilities.

• Develop and implement log collection and correlation strategies across on-premises hybrid and multi-cloud environments to ensure complete visibility.

• Develop maintain and optimize custom correlation rules and dashboards to identify advanced threats and reduce false positives.

• Provide technical leadership and mentorship to junior engineers guiding troubleshooting automation and best practices adoption.

• Partner with SOC Threat Intelligence and Incident Response teams to design and implement advanced detection analytics.

• Evaluate and integrate new log sources ensuring scalability and compliance with AMGENs security architecture.

• Automate recurring tasks using scripting and orchestration (e.g. Python PowerShell Bash REST APIs).

• Lead incident investigation and forensic data enrichment leveraging SIEM data to support rapid containment and remediation.

• Collaborate with infrastructure and application teams to enhance logging monitoring and compliance with security standards.

• Manage and track vendor relationships platform health upgrades and audits for SIEM-related controls and processes.

• Contribute to AMGENs security monitoring roadmap identifying opportunities for innovation and maturity improvements.

WIN

WHAT WE EXPECT OF YOU

We are all different yet we all use our unique contributions to serve patients. The ideal candidate possesses strong leadership qualities a deep understanding of cybersecurity practices and extensive experience in managing large-scale security monitoring programs.

Basic Qualifications:

• Masters degree with 3 years of experience in Information Systems or related field OR

• Bachelors degree with 5 years of experience Information Systems or related field OR

• Diploma with 7 years of experience in Information Systems or related field

• Proven expertise in Security Information and Event Management (SIEM) and User and Entity Behavior Analytics (UEBA) platforms

• Strong understanding of threat detection log management and security analytics frameworks

• Experience designing and implementing security architecture and automation for monitoring and detection

• In-depth knowledge of cybersecurity frameworks (e.g. NIST CSF MITRE ATT&CK ISO 27001)

Preferred Qualifications:

• Proficiency with SIEM platforms (e.g. Splunk QRadar ArcSight Sentinel) and log collection technologies (e.g. Cribl Fluentd Syslog Universal Forwarder)

• Experience designing and maintaining cloud-native SIEM deployments (AWS Azure GCP)

• Strong background in detection engineering threat hunting or automation/orchestration (SOAR)

• Proficiency in scripting and automation (e.g. Python PowerShell Bash)

• Experience integrating threat intelligence feeds and behavioral analytics into detection workflows

• Understanding of DevSecOps and CI/CD integration for monitoring pipelines

Professional Certifications:

• GCDA GCIH GCIA (preferred)

• CISSP CISM or CompTIA Security (preferred)

• Cloud Security certifications (e.g. AWS Security Specialty Azure Security Engineer) are a plus

Soft Skills:

• Excellent analytical and solving skills

• Strong verbal and written communication skills (English)

• Ability to work effectively with global virtual teams

• High degree of initiative and self-motivation

• Ability to handle multiple priorities successfully

• Team oriented with a focus on achieving team goals

• Strong presentation and public speaking skills

THRIVE

WHAT YOU CAN EXPECT OF US

As we work to develop treatments that take care of others we also care deeply for our teammates well-being and growth.

• Work That Matters Build tech that accelerates scientific breakthroughs and helps patients worldwide.

• Modern Tech Stack Cloud-first automation-focused AI-powered.

• Global Scale Agile Mindset Collaborate across continents while working in nimble high-impact teams.

• Continuous Learning Access to certifications trainings mentorship and career mobility.

• AMGEN Total Rewards Plan Comprehensive benefits in healthcare finance and well-being.

• Flexibility Hybrid work model with time split between our Lisbon office and remote work.

Objects in your future are closer than they us.

EQUAL OPPORTUNITY STATEMENT

AMGEN is an Equal Opportunity employer and will consider you without regard to your race color religion sex sexual orientation gender identity national origin protected veteran status or disability status.

We will ensure that individuals with disabilities are provided a reasonable accommodation to participate in the job application or interview process to perform crucial job functions and to receive other benefits and privileges of employment. Please contact us to request an accommodation.