Descripción
**Sub Category** IT Compliance
**Hiring Type** Full time
**Job Level** Individual Contributor
**Posted Date** 07-01-2024
**Job Type** Regular / Permanent
Roche fosters diversity, equity and inclusion, representing the communities we serve. When dealing with healthcare on a global scale, diversity is an essential ingredient to success. We believe that inclusion is key to understanding people-s varied healthcare needs. Together, we embrace individuality and share a passion for exceptional care. Join Roche, where every voice matters.
### ###
### The Position ###
As a Cyber Security Penetration Tester you will be part of the RIS PSPO, Cyber Intelligence & Defense team.
We are seeking a highly motivated professional with experience in Security and Privacy to join our dynamic team. As a PSPO Cyber Security Penetration Tester, this person will perform vulnerability assessments and penetration tests to assess the resilience of the organization and its product portfolio.
You will be responsible to:
* Lead security penetration testing activities and work with Product Teams to determine requirements for testing, develop test strategies and manage test execution.
* Create and maintain a repository of penetration testing methods and tools.
* Perform vulnerability testing at all technology layers, evaluating the criticality for an adequate prioritization and providing the most suitable remediation.
* Execute penetration testing activities on Roche physical and cloud products.
* Create reports and present findings including associated risk and recommendations to product teams and management
* Plan and manage red team exercises to assess cyber resilience of products and solutions.
* Support the Product CERT team during incident response.
* Provide expertise to answer inquiries, pre-sales requests, contract negotiations and other cybersecurity-related customer support.
* Contribute to initiatives within the Diagnostic Division to achieve the integration of defense capabilities into products in collaboration with Solution Architecture and Product Support teams.
* Develop, maintain and continuously optimize processes, playbooks and tools.
Your profile:
* Demonstrated experience in Cloud computing technologies.
* Demonstrated experience in vulnerability assessment and penetration testing.
* Demonstrated experience automating security controls (eg shell scripting, python).
* In-depth experience in assessing information security and privacy risks.
* Experience in incident response and forensics desired.
* Demonstrated soft skills: problem solving, leadership, communication, teamwork, flexibility and adaptability.
* Team player, proactive, self-driven, self-motivated, solution-oriented, hands-on.
* BA/BS in Business, Information Systems, Computer Science or a related relevant area of study preferred
* Industry relevant certifications are a plus: SANS GIAC (GCIH, GPEN, GCIA, GCFA and others), OSCP, OSEP, CEH, CISSP, CISA, CISM, LA ISO27001.
Locations: Switzerland or Sant Cugat
At the Company's discretion, an exception to the location requirement could be made under extraordinary circumstances.
As this position is a global role, international business travel will be required depending upon the business location of the successful candidate and ongoing business project activities.
### Who we are ###
At Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Working together, we-ve become one of the world-s leading research-focused healthcare groups. Our success is built on innovation, curiosity and diversity.
Roche Diagnostics International in Rotkreuz is a leading provider of diagnostic systems solutions, and the largest manufacturer of fully automated in vitro diagnostic systems in Switzerland. We are more than 2-700 passionate colleagues from over 65 nationalities. Find out more about our site in Central Switzerland, here.
Besides extensive development and training opportunities, we offer flexible working options, 18 weeks of maternity leave and 10 weeks of gender independent partnership leave. Our employees benefit from multiple services on site such as child-care facilities, medical services, restaurants and cafeterias, as well as various employee events.
We believe in the power of diversity and inclusion, and strive to identify and create opportunities that enable all people to bring their unique selves to Roche.
Roche is an Equal Opportunity Employer.