Senior Security Engineer
Colonia Metrenquén (Provincia de Llanquihue)
Job description
Nombre del sítio: Poznan Business Garden
Fecha de publicación: Apr 8 2022
Why GSK?
At GSK, we're a company with a purpose to help people do more, feel better and live longer. We realize that our purpose starts with us. When we feel at our best, we perform at our best. Therefore, we want all applicants to be able to perform their best throughout the recruitment process.
We will be delighted to hear from passionate individuals that align to our values. These are at the heart of everything we do and include: Patient focus, Transparency, Respect, Integrity along with Courage, Accountability, Development, and Partnership.
When you set out on your adventure at GSK, we make a deal. You commit to living our values and expectations and performing against our Innovation, Performance and Trust priorities. In return, GSK contributes to providing the right environment for you to thrive. Together, we build an environment where we can all thrive and focus on what matters most to each of us!
As a modern employer, we empower you to be yourself, share ideas and work multi-functionally!
Senior Security Engineer
In this role you will…
·
Work with senior stakeholders and leadership team on the definition and enhancement of GSK Strategy in the Application Security space
·
Provide senior technical advice and recommendations for the selection of tools and processes supporting the GSK app sec strategy
·
Provide subject matter expertise and actively contribute to the enterprise-wide security projects and initiatives
·
Perform vulnerability assessments and penetration tests of IT assets, including web and mobile applications
·
Work with developers, project leads, business customers and stakeholders to explain complicated application and infrastructure security issues and potential business impact, recommend and negotiate suitable mitigation approaches
·
Suggest service changes and improvements in response to the constantly evolving information security landscape
·
Deliver service activities within the agreed SLA timelines, provide an enhanced user experience in the global service line through solutions that are agile, well optimized and cost effective
·
Monitor service metrics, identify gaps and propose improvements
·
Provide recommendations to Leadership Team on further improvements in application security space based on ongoing review of internal processes and services
Why you?
Qualifications & Skills:
Basic Qualifications:
We are looking for engineers with these required skills to achieve our goals:
·
IT or business related degree, or academic course without a degree.
·
Proven track record of working in a global IT security group with experience in application security, penetration testing, threat analysis or incident response.
·
Expert familiarity with web and mobile application testing tools such as BurpSuite Pro, WebInspect, AppScan, Accunetix, Rapid7, Qualys
·
Experience detecting security issues such as Cross Site Scripting, SQL Injection, Parameter Manipulation, Forceful Browsing, Privilege Escalation, etc.
·
Understanding of secure SDLC concepts
·
Experience with CI/CD implementation processes
·
Experience of working with 3rd Party vendors
·
Demonstrated ability for sound judgment with strong emphasis on quality, cost and service improvement
·
Passionate about computer security, willingness to learn new technologies
·
Good command of English (B2/C1)
Preferred Qualifications:
If you have the following characteristics, it would be a plus:
·
Information Security Qualification preferred - SANS GIAC Certifications (e.g. GMOB, GWAPT, GPEN), Offensive Security Certifications (OSCP, OSWE), eLearnSecurity certifications (e.g. eWPT, eWPTX, eMAPT)
·
Knowledge of the information security industry, trends, and vendors.
·
Strong negotiating, influencing, communication and analytical skills
·
Ability to work independently and effectively under pressure to meet deadlines.
·
Professional, moral attitude that builds strong working relationships with team members and customers.
Benefits:
·
Career at one of the top tier global healthcare companies
·
Attractive reward package (competitive salary, annual bonus & awards for outstanding performance, recognition awards for additional achievements and engagement, holiday benefit)
·
Possibilities of development within the role and company’s structure
·
Life insurance and pension plan
·
Open and broad environment which is encouraging and welcoming of all diversity strands (gender, race, ethnicity, sexuality, disability, or any other characteristic)
·
Private medical package with additional preventive healthcare services for employees and their eligible counterparts
·
Sports cards (Multisport)
·
Personalized learning approach (mentoring, online trainings’ platforms)
·
Extensive support of work life balance (flexible working solutions including working from home possibilities, health & wellbeing activities)
·
Supportive community and integration events
·
Modern office with creative rooms, fresh fruits everyday
·
Free car and bike parking, locker rooms and showers
*LI-GSK
G7
Si necesita una adaptación u otra asistencia para solicitar un trabajo en GSK, comuníquese con el Centro de Servicios de RR. HH. de GSK al 1-877-694-7547 (gratis en los EE. UU.) o al +1 801 567 5155 (fuera de los EE. UU.).
GSK es un empleador que cree en la igualdad de oportunidades y la acción positiva. Todos los solicitantes calificados recibirán la misma consideración para el empleo sin tener en cuenta la raza, el color, el origen nacional, la religión, el sexo, el embarazo, el estado civil, la orientación sexual, la identidad o expresión de género, la edad, la discapacidad, la información genética, el servicio militar, el estado de veterano cubierto o protegido o cualquier otra clase federal, estatal o local protegida.
Aviso importante a las empresas o agencias de empleo
GSK no acepta recomendaciones de empresas de empleo o agencias de empleo con respecto a las vacantes publicadas en este sitio. Todas las empresas o agencias de empleo están obligadas a ponerse en contacto con el Departamento de Contrataciones Comerciales y Generales o el Departamento de Recursos Humanos de GSK para obtener autorización previa por escrito antes de recomendar a cualquier candidato a GSK. La obtención de autorización previa por escrito es una condición precedente a cualquier acuerdo (verbal o escrito) entre la empresa o agencia de empleo y GSK. En ausencia de dicha autorización por escrito, se considerará que las acciones que emprenda la empresa o agencia de empleo se han realizado sin el consentimiento o el acuerdo contractual de GSK. Por lo tanto, GSK no será responsable de ninguna tarifa derivada de tales acciones o cualquier tarifa que surja de cualquier recomendación por parte de las empresas o agencias de empleo con respecto a las vacantes publicadas en este sitio.
Tenga en cuenta que si usted es un profesional de la salud con licencia de EE. UU. o profesional de la salud según lo definido por las leyes del estado que emite su licencia, puede ser necesario que GSK recolecte e informe los gastos en los que GSK incurre, en su nombre, en el caso de que se lo entreviste para el empleo. Esta recolección de las transferencias de valor aplicables es necesaria para garantizar el cumplimiento de GSK con todos los requisitos federales y estatales de Transparencia de los Estados Unidos. Para obtener más información, visite el sitio de Informe de Transparencia de GSK For the Record .