Manager - Cloudflare and Security Operations Engineer
Pfizer Inc.
Thessaloniki Chortiatis, Greece
Job posting number: #7135250 (Ref:pf-4880921)
Posted: March 21, 2023
Application Deadline: Open Until Filled
Job Description
We are seeking a highly motivated, technically strong individual to join the Global Digital Operations (GDO) team (within Pfizer’s Platform DevOps organization) as a Cloudflare and Security Operations Engineer.
The Platform DevOps (PDO) team are accountable for the platforms at Pfizer that allow the creation, configuration, launch, and support of all externally facing digital (web, mobile, omni-channel, & device) products, services, and experiences, servicing all external customer types at Pfizer.
The Support and Operations organization works within an Agile Culture with a DevOps mindset of Continuous Improvement. It will be critical for the individual in this role to align to both the framework and the culture of the organization and seek to continuously optimize and automate processes within the “Shift-Left” model established by our team.
The Cloudflare and Security Operations Engineer will lead a team of Cybersecurity professionals who are focused on analyzing threats to Pfizer’s Customer Facing applications, making detailed and informed suggestions for mitigation and implementing the appropriate corrective action.
Additionally, this role will work across Platform DevOps to develop a strategic roadmap and establish best practices from a support, delivery, engineering and reporting perspective.
ROLE RESPONSIBILITIES
Work with Engineering and Operations teams to mitigate attacks, suggest steps to mitigate, and apply the appropriate mitigation, when applicable.
Review the latest alerts to determine relevancy and urgency. Create new tracking tickets for alerts that signal an incident and require review or escalation
Configure / Manage security monitoring rules and contribute to tool improvements.
Develop best practices and security standards for the organization.
Ensure smooth transition of new capabilities to production support
Analyze security systems and development improvements on a continuous basis (e.g. automations)
Identifying security requirements for assigned products, codebases, or systems.
Advocating security and secure practices
Prepare and deliver operational reports to business stakeholder groups and solution delivery leads
Assist with support contract renewals and manage software licenses.
Work with Engineering and Product teams to improve the products and tools
Compare traffic signatures and attributes including IP addresses, cookie variations, HTTP headers, and JavaScript footprints to determine what is good traffic and what is malicious
DDoS mitigation using Cloudflare tools like Network Firewall, WAF, IP reputation lists, packet inspection, allow listing, disallow listing, and/or rate limiting.
BASIC QUALIFICATIONS
5+ years of relevant experience with emphasis on web security
Bachelor of Science degree in Information Management, Computer Science, Engineering, Technology Management or relevant disciplines.
Experience with AWS services, AWS Lambda, CloudFront, Cloudflare, Python, Terraform, GitHub and GitHub Actions
Passion for Cybersecurity with a keen focus on cybersecurity trends and hacking techniques.
Strong attention to detail with an analytical mind and outstanding problem-solving skills
Demonstrated ability to effectively coordinate multiple priorities in a dynamic environment.
Commitment to training, self-study and maintaining proficiency in the technical cyber security domain.
Strong analytical, critical thinking, and troubleshooting skills
Excellent written, interpersonal and oral communication skills, communicate and liaise broadly across functions and the global organization.
Experience managing vendors and contracted resources in both a staff augmentation and outsourcing model.
Ambition to learn and utilize emerging technologies while working in a stimulating team environment.
Project Management.
PREFERRED QUALIFICATIONS
Certifications such as CISSP, GSEC, CEH or CISM desired.
Hands-on Drupal experience.
Hands-on experience on CDN provider such as Cloudflare/Fastly/Akamai
Ability to adapt to changing working conditions and work assignments, to be open, and motivated to learn and adopt new ideas and concepts.
Knowledge of Cloud, Agile, DevOps, hosting, analytics and services technologies.
Able to work remotely with a team spanning many time zones
NON-STANDARD WORK SCHEDULE, TRAVEL OR ENVIRONMENT REQUIREMENTS
Expectations around travel will be minimal but candidates must be capable of travel within the region, to other regions, and to other Pfizer sites.
This role may require physical or virtual participation on a weekend, holiday, or after normal business hours (depending on criticality or business impact of an issue).
LI#PFE
Purpose
Breakthroughs that change patients' lives... At Pfizer we are a patient centric company, guided by our four values: courage, joy, equity and excellence. Our breakthrough culture lends itself to our dedication to transforming millions of lives.
Digital Transformation Strategy
One bold way we are achieving our purpose is through our company wide digital transformation strategy. We are leading the way in adopting new data, modelling and automated solutions to further digitize and accelerate drug discovery and development with the aim of enhancing health outcomes and the patient experience.
Flexibility
We aim to create a trusting, flexible workplace culture which encourages employees to achieve work life harmony, attracts talent and enables everyone to be their best working self. Let’s start the conversation!
Equal Employment Opportunity
We believe that a diverse and inclusive workforce is crucial to building a successful business. As an employer, Pfizer is committed to celebrating this, in all its forms – allowing for us to be as diverse as the patients and communities we serve. Together, we continue to build a culture that encourages, supports and empowers our employees.
Pfizer is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status. Pfizer also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA. Pfizer is an E-Verify employer.