Sr. Associate
5 months ago
The Global Information Security (GIS) organization delivers proactive cyber defense for the global Pfizer enterprise. Our mission is to secure all of Pfizer’s digital information assets ranging from the manufacturing floor to the core data centers, and out to our patient facing solutions. We achieve this mission through a team of world-class talent that focuses on building strong partnerships to build security into all aspects of our business. Across GIS we utilize top-tier technologies, industry leading best practices, advanced analytics, and the promotion of a cybersecurity ownership culture to drive results for the enterprise.
At Pfizer, you will find a company as focused on its internal culture as it is on its external reputation. You will have the opportunity to partner with colleagues of diverse backgrounds and abilities, people who contribute to all aspects of what we do—from drug development to marketing, technology to sales, and so much more
Primary responsibilities include:
- Research new security threats, vulnerabilities, and exploit
- Techniques to identify new weaknesses and recommend remediation or mitigation
- Create scripting code and methodologies for new testing techniques
- Upgrade, maintain and recommend security tools to support testing
- Manage assessments performed and deliver results to customers on time, assist customers with recommendations and retest as needed
- Develop communications and present to key shareholders for assessments. Responding to new attack surfaces and help implement new requirements as needed
- Ability to work both independently and in a team-oriented, collaborative environment
- Partner with global team members to drive secure outcomes based on industry best practices
- Partner with the Incident Response team on developing new detections based on trending attack surfaces
Partner with Attack Surface Reduction (ASR) to support the adoption of DevSecOps practices across the Enterprise
Advise development teams on secure coding practices and secure software development lifecycle (SDLC) methodologies
- Collaborate with the ASR team to actively monitor the security posture of Pfizer’s code repositories
- Understand DSO pipeline stage gates for SCA / SAST and enforcement
BASIC QUALIFICATIONS
- Applicant must have one of the following:
- Bachelor’s degree with three years of relevant experience
- Master’s degree with one year of relevant experience
- Associate's degree with six years of relevant experience
- Eight years of relevant experience with a high school diploma or equivalent
- Experience performing security assessments
- Experience in Software Development Security Operations (DevSecOps)
- Experience in the Software Development Lifecycle and supporting technologies
- Programming or scripting in C#, python, ruby, or PowerShell
- Strong leadership skills with the ability to prioritize and execute with mínimal direction or oversight
- Ability to interpret log data and draw analytical conclusions
- Maintain awareness of industry frameworks and best practices: Threat Modeling, NIST, OWASP, SANS Security Model
- Maintain awareness of industry trends and emerging technologies including web services, mobile, wearables, isolated architectures, databases security, IoT
- Experience with security testing tool, proxies, port scanners, vulnerability scanners, exploit frameworks
- Ability to proactively solve complex problems both individually and as part of a team
- Demonstrated commitment to training, self-study and maintaining proficiency in the cyber security domain
- Effective oral, written, and interpersonal communications skills are required as well as organizational, planning, and administrative abilities and the ability to coordinate multiple complex projects simultaneously
- High level of integrity and strong ethical values
Work Location Assignment: Flexible
Purpose
Breakthroughs that change patients' lives... At Pfizer we are a patient centric company, guided by our four values: courage, joy, equity and excellence. Our breakthrough culture lends itself to our dedication to transforming millions of lives.
Digital Transformation Strategy
One bold way we are achieving our purpose is through our company wide digital transformation strategy. We are leading the way in adopting new data, modelling and automated solutions to further digitize and accelerate drug discovery and development with the aim of enhancing health outcomes and the patient experience.
Flexibility
We aim to create a trusting, flexible workplace culture which encourages employees to achieve work life harmony, attracts talent and enables everyone to be their best working self. Let’s start the conversation
Equal Employment Opportunity
We believe that a diverse and inclusive workforce is crucial to building a successful business. As an employer, Pfizer is committed to celebrating this, in all its forms - allowing for us to be as diverse as the patients and communities we serve. T
-
Sr Associate Drug Product Manufacturing Lead
7 months ago
Sandwich, United Kingdom Pfizer Full timeWhy Patients Need You Our breakthroughs would not make it to the hands of patients without our pharmaceutical manufacturing team. We rely on a team of dedicated and agile members, who appreciate the importance and impact of their role in Pfizer’s mission. Patients need colleagues like you who take pride in their work and always look to improve outcomes....