CrawlJobs Logo
Amgen Logo Amgen · IT - Software Development

Is Security Engineer

United States, Thousand Oaks Employment contract 123219.00 USD / Year · Job Posted May 05, 2026
Apply Position
Job Link Share

Job Description

At Amgen, if you feel like you’re part of something bigger, it’s because you are. Our shared mission—to serve patients living with serious illnesses—drives all that we do. Since 1980, we’ve helped pioneer the world of biotech in our fight against the world’s toughest diseases. With our focus on four therapeutic areas –Oncology, Inflammation, General Medicine, and Rare Disease– we reach millions of patients each year. As a member of the Amgen team, you’ll help make a lasting impact on the lives of patients as we research, manufacture, and deliver innovative medicines to help people live longer, fuller happier lives. Our award-winning culture is collaborative, innovative, and science based. If you have a passion for challenges and the opportunities that lay within them, you’ll thrive as part of the Amgen team. Join us and transform the lives of patients while transforming your career.

Job Responsibility

  • Support Incident Response (IR) Operations and to ensure continuity of 24/7 security services
  • Execute the Global Incident Management Program in accordance with industry frameworks (e.g., SANS PICERL)
  • Support Incident Response Commander and is directly responsible for IR activities
  • Revise and develop processes to strengthen Security Operations and Incident Response
  • Lead coordination efforts with necessary partners to better understand activity or actions and their impact to Amgen's environment
  • Translate complex technical incidents into business language and be able to present the same to different audiences
  • Demonstrate, integrate, and collaborate on enhancing existing information security solutions and services to address any gaps or deficiencies in the Cybersecurity Operations Center (CSOC) to address security risks
  • Collaborate with other Information Security teams and provide CSOC insight to where limited information security controls or solutions are present

Requirements

  • Master's degree (or foreign equivalent) in Cybersecurity, Computer Engineering Computer Science, Information Technology or related field & completion of a university-level course, research project, internship, thesis, or one year of experience in: 1. Implement the basic security principles and concepts related to information systems
  • 2. Conduct risk assessments and create related security plans
  • 3. Security risk Management Methodologies to create policies and procedures to manage security risks
  • 4. Windows Security, Reverse engineering and binary analysis
  • 5. Viruses, worms, malware and malicious code
  • 6. Botnets and Language security
  • 7. Articulate components of Critical Infrastructure and Key Resources that require protection
  • 8. Analyze and evaluate proposed and existing information security policies, practices and procedures in order to assess potential liabilities.

What we offer

  • stock
  • retirement
  • medical
  • life and disability insurance
  • eligibility for an annual bonus
  • Retirement and Savings Plan with generous company contributions
  • group medical, dental and vision coverage
  • flexible spending accounts
  • discretionary annual bonus program
  • stock-based long-term incentives
  • award-winning time-off plans
  • flexible work models including remote and hybrid work arrangements
Amgen - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Is Security Engineer

8 matching positions

Senior Security Engineer and Principal Security Engineer (Multiple Positions)- Windows Security

The Microsoft Windows Security team is looking for learn-it-all security enginee...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in security or related field
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in security or related field
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role
  • Microsoft Cloud Background Check
Job Responsibility
Job Responsibility
  • Participate in security reviews to identify and mitigate risk in Microsoft products, including design reviews, code reviews, and fuzzing
  • Be the security contact for teams building new innovative products and technologies in the next version of Windows and devices
  • Identify security vulnerabilities in a wide variety of key OS features such as network protocols, security features, and Microsoft devices
  • Leverage a broad and current understanding of security to devise new protections
  • Interact with the external security community and security researchers
  • Collaborate with product teams to improve security, and articulate the business value of security investments
  • Fulltime
Read More
Arrow Right

Senior Security Engineer and Principal Security Engineer

The Microsoft Windows Security team is looking for a learn-it-all security engin...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in security or related field OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in security or related field OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check upon hire/transfer and every two years thereafter
  • 2+ years identifying vulnerabilities in operating systems and/or native (C/C++) applications
  • 5+ years of experience in a software engineering or security-related engineering
  • Demanstrated experience in security research, especially around vulnerability discovery
  • Experience exploiting bugs and bypassing security mitigations in operating systems
  • Familiarity with Microsoft Windows architecture
Job Responsibility
Job Responsibility
  • Participate in security reviews to identify and mitigate risk in Microsoft products, including design reviews, code reviews, and fuzzing
  • Be the security contact for teams building new innovative products and technologies in the next version of Windows and devices
  • Identify security vulnerabilities in a wide variety of key OS features such as network protocols, security features, and Microsoft devices
  • Leverage a broad and current understanding of security to devise new protections
  • Interact with the external security community and security researchers
  • Collaborate with product teams to improve security, and articulate the business value of security investments
  • Fulltime
Read More
Arrow Right

Sr Associate IS Security Engineer - Veeva Vault

In this vital role in the Veeva Vault team you will be responsible for designing...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
amgen.com Logo
Amgen
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's degree / Bachelor's degree and 5 to 9 years
  • Experience with Veeva Vault Platform and Products, including Veeva configuration settings and custom builds
  • Strong knowledge of information systems and network technologies
  • 6-8 years of experience working in global pharmaceutical Industry
  • Experience in building configured and custom solutions on Veeva Vault Platform
  • Experience in managing systems, implementing and validating projects in GxP regulated environments
  • Extensive expertise in SDLC, including requirements, design, testing, data analysis, creating and managing change controls
  • Proficiency in programming languages such as Python, JavaScript etc.
  • Good understanding of software development methodologies, including Agile and Scrum
  • Experience with version control systems such as Git
Job Responsibility
Job Responsibility
  • Designing, developing, and maintaining security solutions that meet business needs
  • Working closely with product managers, designers, and other engineers to create high-quality, scalable software solutions and automating operations, monitoring system health, and responding to incidents to minimize downtime
  • Ensuring compliance with relevant regulations and maintain current certification status against various standards
  • Identifying control gaps, advising teams on how to address them, and collecting, organizing, and reviewing evidence for Veeva products
  • Planning and managing audits, interacting with external auditors, and advising management on risk and control issues
  • Leading day to day operations and maintenance of Amgen’s R&D Veeva Vaults and hosted applications
  • Designing, developing, and implementing applications and modules, including custom reports, SDKs, interfaces, and enhancements
  • Analyzing and understanding the functional & technical requirements of applications, solutions and systems, translating them into software architecture and design specifications
  • Developing and executing unit tests, integration tests, and other testing strategies to ensure the quality of the software following IS change control and GxP Validation process
  • Working closely with multi-functional teams, including product management, design, and QA, to deliver high-quality software on time
  • Fulltime
Read More
Arrow Right

Security Engineer (Security Operations)

Everlaw is looking for a Security Engineer. Reporting to the Manager, Security E...
Location
Location
United States , Oakland
Salary
Salary:
159000.00 - 201000.00 USD / Year
everlaw.com Logo
Everlaw
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 1-3 years of experience working in a security-focused role
  • Experience in handling security events and incidents from initial triage through to remediation
  • Programming skills in at least one scripting language (like Python) and are comfortable navigating a Linux environment
  • Experience with security tools like vulnerability scanners (Nessus/Trivy), HIDS/NIDS (Wazuh/Zeek), and SIEM/SOAR platforms (Splunk/ELK/Datadog)
  • Understand the vulnerability lifecycle and have experience detecting, prioritizing, and remediating vulnerabilities
  • Written detection rules and response processes for security specific events
  • Can explain technical concepts without jargon, keeping security relatable so that others can solve problems with your support
  • Balance strong protections with enabling people to do their work, finding ways to improve security without blocking innovation
  • Authorized to work in the United States without restrictions
Job Responsibility
Job Responsibility
  • Support the team to drive improvements in our vulnerability management, threat detection, and incident response capabilities, contributing your perspective to help the team grow
  • Triage security events and respond to security incidents, taking action to contain them, guiding recovery of normal operations, and reducing the likelihood of recurring threats
  • Strengthen threat detection and response systems that safeguard both our cloud infrastructure, third-party integrations, and platform services
  • Develop and refine security processes, procedures, and runbooks that allow our security posture to scale as the company grows
  • Manage and tune AWS security services (IAM, Security Hub, GuardDuty, Config) for effective threat detection, access control, and continuous monitoring
  • Collaborate with Engineering, Engineering Operations, Corporate Security, and GRCT teams to help meet our operational security commitments by probing for vulnerabilities, assessing risk, and advising on how to respond to them
  • Advise other engineers and partners on building a secure platform by leading threat modeling sessions, conducting security design reviews, and reviewing code and configuration changes for security concerns
  • Proactively solve security challenges and foster a security mindset with innovative, security-conscious coworkers across Everlaw
What we offer
What we offer
  • Equity program
  • 401(k) retirement plan with company matching
  • Health, dental, and vision
  • Flexible Spending Accounts for health and dependent care expenses
  • Paid parental leave and approximately 10 days (80 hours) per year of sick leave
  • Seventeen paid vacation days plus 11 federal holidays
  • Membership to Modern Health to help employees prioritize mental health and wellness
  • Annual allocation for Learning & Development opportunities and applicable professional membership dues
  • Company-sponsored life and disability insurance
  • Work in Downtown Oakland, just steps from the BART line and dozens of restaurants
  • Fulltime
Read More
Arrow Right

Senior Security Engineer - Security Incident Response

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, or related field
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • equivalent experience
  • Active U.S. Government Secret Security Clearance
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • U.S. citizenship verification
Job Responsibility
Job Responsibility
  • Coordinate with investigators to prioritize investigation objectives, understands attack paths, and systematically executes mitigation and protection actions to evict threat actors for any security incident impacting any of Microsoft’s products or services
  • Conduct hands-on mitigation where possible
  • engages service owners when there is a risk of a production outage
  • Maintain hands-on knowledge of mitigation and protection steps for various asset types (e.g. M365, Azure, AI) and publishes self-service guidance for impacted engineering teams
  • Brief executive stakeholders on eviction plans and associated status
  • Maintain and evolves an inventory of threat actor Tactics, Techniques, and Procedures (TTPs) and the corresponding eviction capabilities
  • Define and prioritize requirements and use cases for Microsoft’s threat actor eviction platform
  • operationalize as they are delivered
  • Drive strategic change to accelerate eviction scenarios (e.g. lean business cases to garner support for broader Microsoft product initiatives or features)
  • Participate in an on-call rotation
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Security Operations

The senior security engineer role provides a unique opportunity to shape the sec...
Location
Location
United States , REMOTE; SAN FRANCISCO; ROSEVILLE; LEHI; WEST PALM BEACH; IRVINE
Salary
Salary:
146000.00 - 170000.00 USD / Year
goodleap.com Logo
GoodLeap
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences
  • Expertise in security event management, monitoring, threat hunting, incident response, playbook creation, orchestration/automations
  • Experience with threat modeling methodologies
  • Expertise with EDR solutions/platforms, such as CrowdStrike, S1, Palo Alto Cortex EDR
  • Experience with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus)
  • Proven ability to establish credibility and build trust with business, engineers, and operational staff
  • Experience designing, configuring, and implementing security and fraud monitoring for core enterprise systems, e.g., ERP, HCM, Salesforce
  • Experience working with and creating solutions based AI and ML toolsets – e.g., creation of AI skills, agents, MCP clients, vibe coding
  • Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases
  • Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK
Job Responsibility
Job Responsibility
  • Lead, participate in, and contribute to security and fraud monitoring, detection, and response activities, inclusive of investigations, threat hunting,etc. Create playbooks for specific incident response scenarios
  • Identify potential misuse and abuse cases in enterprise systems, propose solutions to detect these scenarios, and identify and implement monitoring and detection solutions for such scenarios
  • Support or develop components of the security analytics platform
  • Support embedded (product) security team
  • Support general security operations team with vulnerability management, tools management, and more
What we offer
What we offer
  • bonus
  • equity
  • Fulltime
Read More
Arrow Right

Senior Security Engineer - Security Incident Response

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
United States , Multiple Locations
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, or related field
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • equivalent experience
  • Active U.S. Government Secret Security Clearance
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter
Job Responsibility
Job Responsibility
  • Coordinates with investigators to prioritize investigation objectives, understands attack paths, and systematically executes mitigation and protection actions to evict threat actors for any security incident impacting any of Microsoft’s products or services
  • Conducts hands-on mitigation where possible
  • engages service owners when there is a risk of a production outage
  • Maintains hands-on knowledge of mitigation and protection steps for various asset types (e.g. M365, Azure, AI) and publishes self-service guidance for impacted engineering teams
  • Briefs executive stakeholders on eviction plans and associated status
  • Maintains and evolves an inventory of threat actor Tactics, Techniques, and Procedures (TTPs) and the corresponding eviction capabilities
  • Define and prioritize requirements and use cases for Microsoft’s threat actor eviction platform
  • operationalize as they are delivered
  • Drives strategic change to accelerate eviction scenarios (e.g. lean business cases to garner support for broader Microsoft product initiatives or features)
  • Participates in an on-call rotation
  • Fulltime
Read More
Arrow Right

Application Security Engineer, AI Security

Notion is looking for security engineers that have a passion for securing comple...
Location
Location
United States , San Francisco
Salary
Salary:
230000.00 - 280000.00 USD / Year
notion.so Logo
Notion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Security Architecture expertise: You have at least 6+ years of experience working with product teams to design and/or build secure software
  • Thoughtful problem-solving
  • Impact-driven approach to technology
  • Pragmatic and business-oriented
  • Empathetic communication
  • Startup mentality
  • You don’t need to be an AI expert, but you’re curious and willing to adopt AI tools to work smarter and deliver better results
Job Responsibility
Job Responsibility
  • Help define the security models for Notion’s products as they ship, giving guidance to engineering and product teams to ensure new features meet strict enterprise security requirements
  • Perform hands on testing and develop automated red teaming for AI and agentic features, especially focused on AI specific risks like prompt injection
  • Make the secure path the easy path for product teams by providing design guidance and finding architectural solutions that eliminate classes of vulnerabilities
  • Provide developers guidance and education on security and privacy best practices that prevent the authoring of vulnerabilities
  • leverage skills, MCP enabled tools, and hooks to help prevent vulnerabilities for developers using agentic coding tools
  • Participate in and drive mitigation strategies during AppSec related incident responses
What we offer
What we offer
  • Highly competitive cash compensation, equity, and benefits
  • Fulltime
Read More
Arrow Right