Astellas Pharma

Do you want to be part of an inclusive team that works to develop innovative therapies for patients? Every day, we are driven to develop and deliver innovative and effective new medicines to patients and physicians. If you want to be part of this exciting work, you belong to Astellas!

Astellas Pharma Inc. is a pharmaceutical company conducting business in more than 70 countries around the world. We are committed to turning innovative science into medical solutions that bring value and hope to patients and their families. Keeping our focus on addressing unmet medical needs and conducting our business with ethics and integrity enables us to improve the health of people throughout the world. For more information on Astellas, please visit our website at www.astellas.com .

This position is based in Bangalore, India. At Astellas we recognize the importance of work/life balance, and we are proud to offer a hybrid working solution allowing time to connect with colleagues at the office with the flexibility to also work from home. We believe this will optimize the most productive work environment for all employees to succeed and deliver. Hybrid work from certain locations may be permitted in accordance with Astellas’ Responsible Flexibility Guidelines.

Purpose and Scope:

As a Cyber Security Engineer, you will play a critical role in safeguarding our organization’s information systems and data. This position has arisen due to Astellas insourcing the responsibility for managing security operations, developing automation for threat detection, and working towards ‘best in industry’ incident response. The successful candidate will work collaboratively within the Security Operations Center (SOC) and other Value Teams across the organization to ensure a proactive security posture and to mitigate risks associated with cyber threats in several areas.

Astellas has several roles that may fit candidates who do not have experience in all the areas outlined in the next section, therefore we encourage applicants who have experience in two or more areas listed below.

Responsibilities and Accountabilities:

Security Operations Center (SOC) Management:

• Support daily SOC operations, ensuring effective monitoring support, development of use cases and response to security incidents.
• Manage application ingestion processes and email security protocols.
• Support SIEM management, including logging and alerting.

Automation Development:

• Develop and implement automation solutions for alerts from various security sources ensure firewalls, IDS and EDR tools are working effectively.
• Streamline processes to enhance the efficiency of security operations and help develop the communication with other team.

Threat Modelling:

• Conduct threat modelling for applications to identify vulnerabilities and recommend mitigation strategies.
• Analyze email tickets and develop tooling to improve response times and effectiveness.
• Provide route cause analysis for threat found and assist remediation.

Anti-Malware and Endpoint Detection:

• Assist in operational efforts to implement a global strategy for anti-virus (AV) solutions and optimize detection capabilities.
• Ensure consistent standards for endpoint detection and response across the organization.

Incident Response:

• Lead or support incident response efforts using an industry recognized model and report escalations to senior leadership when required.
• Collaborate with Red, Blue, and Purple teams to conduct penetration testing and improve security posture.
• Conduct forensic analysis to investigate security incidents and recommend improvements.

Proactive Threat Hunting:

• Engage in proactive threat hunting to identify potential security threats before they materialize.
• Collaborate with teams to enhance detection and response capabilities.

Reporting and data analysis:

• Engage in proactive collaboration across Value Teams working with an agile mindset and assist in the creation of dashboards and reporting for security governance.
• Assist in the governance of security within cloud infrastructure.

Required:

• Bachelor’s degree in Computer Science, Information Technology, Cyber Security, or a related field.
• Proven experience in a cyber security role, preferably within a SOC/SIEM/SOAR environment.
• Experience in using Microsoft Sentinel & Defender / Crowdstrike EDR / Wizz Cloud Security.
• Strong knowledge of security frameworks, threat modelling, and incident response methodologies.
• Awareness of infrastructure and network security features like; firewall rules, event ID’s, logging/detection and managing assets in manufacturing / OT environments.
• Experience of working with cloud security and insourced capabilities as well and MSP’s.
• Experience with SIEM/Cloud security tools and automation technologies.Familiarity with anti-malware solutions and endpoint detection strategies.Proficiency in scripting languages for automation (e.g., Python, PowerShell) is an advantage.
• Experience of digital forensics (log analysis and technical route cause assessment).

Preferred:

• Security certification an advantage.
• Demonstrate knowledge of change management principles Relevant certifications (e.g., Certified Information Systems Security Professional CISSP, Certified Ethical Hacker CEH or CompTIA Security+ etc.)Excellent analytical and problem-solving skills.
• Strong communication skills and the ability to work collaboratively in a small team environment where we share capacity and effort.
• International / global experience an advantage.

Working Environment

• This is a Permanent position
• Remote/ Hybrid: candidates must be located within commutable distance from the office
• Astellas is a global company. Successful candidates will be expected to work across different time zones and according to regions or specific locations based upon demand

Category

Astellas is committed to equality of opportunity in all aspects of employment.

EOE including Disability/Protected Veterans

Apply Now