Junior Cloud Security Engineer

Main Responsibilities

• Establish a collaborative governance structure around the use of new cloud features to establish an acceptable risk posture.

• Define the requirements, best practices, and lead the collaborative development of cloud system/service architecture, design, and engineering.

• Define strategy, governance, and drive best practices for protecting company data.

• Be responsible for evaluating new solutions and developing the supporting elements required to incorporate new technologies in a safe and secure manner.

• Produce architecture diagrams, blueprints, and solution narratives to bring solutions to reality with a DevSecOps mindset & culture.

• Partner with platform and development teams to assess and close gaps in cloud security posture and data protection across the security disciplines.

• Collaborate across IT and business organizations to facilitate the design, development, engineering, and deployment of security controls used to protect.

• Ensure compliance with all requirements applied to cloud services and technology.

Daily:

• Provide technical guidance and foster a collective understanding of data protection and security issues encountered in cloud infrastructure, applications, services, and for information traversing our eco-system.

• Work closely with DevOps teams on Infrastructure as Code, Automation, and Orchestration.

• Provide expert knowledge of cloud and data security architecture and consult with business and other technology teams to address complex needs.

• Drive the collaborative development of the technology strategy, technology standards, roadmaps, and practices.

• Collaborate with data analytics team to build security reference architectures and drive preventative security controls.

• Work closely with the IT and business to prioritize and address emerging risks through the application of mitigating solutions.

Ideal skillset

• 1-3 years of experience with Cybersecurity concepts, including encryption, configuration management, auditing, access control, database security and information protection.

• 1+ years of experience with Cloud Amazon Web Services (AWS) or Microsoft Azure platforms & SaaS environments.

• Experience in designing, implementing, and delivering security for cloud-native, distributed computing and architectural solutions with a Principle of “Secure by Design.”

• Excellent knowledge of security architecture and engineering.

• Experience in large scale enterprise Cloud projects from ideation to production.

• Understanding of software/system delivery lifecycle and accompanying technologies.

• Strong interpersonal, networking, influencing, and relationship-building skills and the ability to navigate cross-culturally with wide array of stakeholders, internally and externally.

Preferred

• Experience with protection of both structured and unstructured data via the application of controls based on data classification

• Cloud incident response and endpoint security solutions.

• API security.

• Certification in information security, application security, and/or cloud security.

• Certification in AWS or Azure environments.

• Experience with DevSecOps, including continuous integration (CI) and continuous delivery (CD).

• Experience in Agile delivery methodologies.

• Experience in Data Leakage Prevention

• Proficiency in mobile security concepts

Our Support Functions deliver services and make recommendations about ways to enhance our workplace and the culture of our organization. Our Support Functions include HR, Finance, Information Technology, Legal, Procurement, Administration, Facilities and Security.

Who we are …

We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world.

What we look for …

Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today.

NOTICE FOR INTERNAL APPLICANTS

In accordance with Managers' Policy - Job Posting and Employee Placement, all employees subject to this policy are required to have a minimum of twelve (12) months of service in current position prior to applying for open positions.

If you have been offered a separation benefits package, but have not yet reached your separation date and are offered a position within the salary and geographical parameters as set forth in the Summary Plan Description (SPD) of your separation package, then you are no longer eligible for your separation benefits package. To discuss in more detail, please contact your HRBP or Talent Acquisition Advisor.

Residents of Colorado

Click here to request this role’s pay range.