The Global Information Security (GIS) organization delivers proactive cyber defense for the global Pfizer enterprise. Our mission is to secure all of Pfizer’s digital information assets ranging from the manufacturing floor to the core data centers, and out to our patient facing solutions.
We achieve this mission through a team of world-class talent that focuses on building a strong partnership with the business to build security into all aspects of our business.
Across all aspects of our organization, we utilize top-tier technologies, industry leading best practices, advanced analytics and the promotion of a cybersecurity ownership culture across the company.
The Senior Associate, Cybersecurity Automation Engineer will support a range of activities, such as coding, testing, debugging, documentation, integration, and maintenance of automated solutions for Global Information Security This role will work closely with incident responders, forensic examiners, security operations, security consultants and risk assessors to provide frameworks and solutions that increase the capacity and efficiency of the team.
This position will involve cross functional collaboration, and the ability to deliver frameworks that simplify the process of turning an idea into a solution.
For Pfizer, we look for candidates that are motivated, self-learning, and team-oriented individuals. From a technical perspective, an ideal candidate would have the skills shown below, but candidates that possess a strong subset and an attitude towards self-development & growth will be considered.
Become a subject matter expert in at least one mission space within Global Information Security
Contribute to the roadmap for using technology to enhance the effectiveness and efficient operations of Global Information Security
Support the operations, maintenance, and enhancement of existing automation frameworks and solutions
Support the operations and maintenance of Security Orchestration and Automated Response (SOAR) tools and platforms.
Assist teams across GIS with achieving their desired end goals via SOAR tools, custom Python code, BASH scripts, or other solutions as appropriate.
Assist teams across GIS with operationalizing automated solutions
Continuously enhance the DevOps process with incremental improvements that enhance the usability, reliability, and reliability of automation operations.
Provide constructive feedback and specific recommendations to the team during peer-review sessions
Thorough testing, documentation and implementation of applications or code that will enable security teams to respond to investigations and incidents globally through repeatable processes.
Work well with a team, including cross-unit and cross-divisional teams, and must be able to maintain poise and composure in difficult situations, with a professional attitude at all times.
Serve as a mentor for other developers and engineers within the Cybersecurity Automation Team
Lead projects to increase the effectiveness of the Cybersecurity Automation Team
Bachelor’s Degree in cybersecurity, computer science, information systems, or engineering
2-4 years’ experience working in a business / corporate environment
Familiarity with Python, JSON, BASH
Familiarity with at least one security domain (forensic examination, incident response, vulnerability management, cryptography, access control)
Proficiency with Linux Command Line
Familiarity developing code to interact with REST API Services
Ability to think critically and properly qualify assessments
Demonstrated ability to provide concise, accurate communications (both verbal and written)
Excellent communication, and presentation skills
Ability to work both independently and in a team-oriented, collaborative environment
Ability to prioritize and execute with minimal direction or oversight
Experience / with application development with APIs from workflow applications, SIEMS and other enterprise security systems is a plus
Experience with at least one SOAR tool
Experience scripting repetitive tasks.
Experience with refactoring frameworks to address multiple anticipated business needs simply and efficiently