Ofertes d'ocupació a AstraZeneca

• Nivell d'experiència---
• Tipus de contracteA temps complert
• Publicada6 de març

Docker Cloud Coumputing Kubernetes TypeScript SaaS AWS Bash DevOps Kafka Machine Learning

Role based in Barcelona 3 days at office/ 2 days at home

We are seeking a passionate and experienced Senior DevOps Engineer to lead the transformation of our SaaS platform infrastructure and operations. Join us in leveraging cutting-edge technology, data, and AI to revolutionize life sciences and improve billions of lives globally. In this pivotal role, you will design, implement, and optimize robust cloud-based infrastructure and operational frameworks that enable rapid innovation and deliver exceptional system reliability. You will also guide and mentor team members, sharing your expertise in AWS CDK automation, Kubernetes, networking, and DevOps best practices.

Key Responsibilities
- Infrastructure Design & Management: Architect and manage scalable, multi-tenant AWSbased infrastructure using AWS CDK, ensuring modular and maintainable codebases.
- Kubernetes & EKS: Lead the deployment and management of Kubernetes clusters using Amazon EKS, implementing best practices for scalability and security.
- CI/CD Pipelines: Build, manage, and enhance automated CI/CD pipelines to ensure efficient, reliable deployments using tools like ArgoCD and GitHub Actions.
- IAM Role Management: Design, maintain, and optimize IAM roles, policies, and guardrails to ensure least privilege access across AWS resources.
- Networking: Architect and maintain AWS networking components such as VPCs, Transit Gateway, ALB, and Security Groups, ensuring robust security and performance.
- Security & Compliance: Implement DevSecOps best practices, including IAM security, encryption standards, and compliance with industry regulations (GXP, GDPR, HIPAA, NIST).
- AWS WAF & Firewall Policies: Design and implement firewall policies and AWS WAF configurations to protect applications from web threats.
- Automation: Lead efforts to automate infrastructure provisioning, application releases, and ETL workflows, reducing manual intervention and improving efficiency.
- Monitoring & Incident Response: Develop and implement comprehensive monitoring, logging, and alerting systems using OpenTelemetry, Prometheus, Grafana, AWS CloudWatch, and AWS CloudTrail.
- AWS EventBridge & CloudTrail: Utilize AWS EventBridge for event-driven automation and troubleshoot security and operational issues using AWS CloudTrail.
- Governance & Strategic Input: Drive governance processes, including security reviews, cost optimization, and operational consistency across the platform.
- AWS Control Tower & Multi-Account Management: Manage multiple AWS accounts using AWS Control Tower and best practices for account isolation.
- AI & Machine Learning: Exposure to AI tools and frameworks is a plus.
- Mentorship & Leadership: Mentor and guide junior and mid-level engineers, fostering a culture of learning and collaboration. Provide technical leadership in the adoption of AWS CDK and best practices for cloud automation.
- Collaboration: Partner with cross-functional teams, including product management and security, to align DevOps strategies with business goals and ensure cohesive development and operational workflows.

Required Experience & Qualifications
- Experience: 7+ years in DevOps or cloud infrastructure roles, with significant experience in SaaS and multi-tenant platforms. Proven track record of mentoring team members.
- Cloud Expertise: Expert knowledge of AWS services, including VPC, IAM, EC2, S3, RDS, Lambda, EKS, AWS WAF, AWS EventBridge, and AWS CloudTrail.
- Containerization & Orchestration: Deep proficiency in Docker, Kubernetes, Helm, and associated ecosystem tools.
- CI/CD Proficiency: Expertise in CI/CD tools such as ArgoCD and GitHub Actions.
- Infrastructure as Code (IaC): Advanced experience with AWS CDK (TypeScript preferred) and CloudFormation.
- Networking: Strong understanding of AWS networking services such as VPCs, Transit Gateway, ALB, and Security Groups.
- Security: In-depth knowledge of IAM, AWS KMS, encryption standards, AWS WAF, and security compliance frameworks including NIST.
- Monitoring & Alerting: Extensive experience with OpenTelemetry, Prometheus, Grafana, AWS CloudWatch, and AWS CloudTrail for monitoring and incident response.
- Data & ETL Pipelines: Familiarity with AWS Glue and Managed Kafka for real-time and batch data processing.
- Programming & Automation: Strong scripting and automation skills using TypeScript and Bash.
- Multi-Account AWS Management: Experience managing multiple AWS accounts with AWS Control Tower.
- Communication & Collaboration: Exceptional verbal and written communication skills, with the ability to explain complex technical concepts to diverse stakeholders.

Desired Experience & Qualifications
- Advanced expertise in AWS CDK, including building complex, reusable constructs and pipelines.
- Familiarity with Projen for automating CDK project configuration and management.
- Hands-on experience with Helm charts and Kubernetes manifests.
- Experience with monitoring and logging tools such as Prometheus, Grafana, and AWS CloudWatch. Exposure to multi-tenant SaaS platforms and best practices.
- Experience working with AI tools and frameworks.

Personal Attributes
- Mentor & Leader: Enjoys mentoring team members and fostering a collaborative, innovation-driven team culture.
- Organized & Adaptable: Able to manage multiple priorities and thrive in a fast-paced environment.
- Innovative: Passionate about leveraging technology to solve complex problems and drive efficiency.
- Customer-Focused: Dedicated to building infrastructure that delivers measurable business and customer value.

Work Arrangement:

This is an in-office role based in Barcelona, Spain, with a requirement to work a minimum of three days per week on-site.

Join Evinova and redefine healthcare with us. Apply now to be part of a team that´s transforming life sciences with technology, data, and innovation.

Date Posted
02-mar-2026

Closing Date
30-mar-2026

AstraZeneca embraces diversity and equality of opportunity. We are committed to building an inclusive and diverse team representing all backgrounds, with as wide a range of perspectives as possible, and harnessing industry-leading skills. We believe that the more inclusive we are, the better our work will be. We welcome and consider applications to join our team from all qualified candidates, regardless of their characteristics. We comply with all applicable laws and regulations on non-discrimination in employment (and recruitment), as well as work authorization and employment eligibility verification requirements.

• Nivell d'experiència---
• Tipus de contracteA temps complert
• Publicada4 de març

MySQL Agile Azure Cloud Coumputing AWS DevOps Spark Power BI

Data & Analytics Lead

You´ll Influence The Lives Of Millions Globally

Do you want to be part of one of the global leading innovators in the biopharmaceutical business in shaping the technology that reinforces everything we do that helps AstraZeneca push the boundaries and turns ideas into life changing medicines? The Drug Development Data Platform team here at AZ plays a key role introducing process and technology improvements such as Data Mesh, Agile, DevOps and the very latest engineering tools to maximise velocity and business value.

Apply Your Expertise in A Dynamic Team

You will join the Drug Development Data Platform leadership team which is responsible for delivering data driven solutions across many different domains in support of clinical product development. This includes Clinical Operations, Digital Patient Clinical Devices, Patient Safety and Human Bio sampling. The R&D Data Platform is organised into DevOps teams specialising in: Information Architecture, Data Engineering, BI Engineering, Knowledge Management, Data Science, Data Analysis and Information Governance.

You´ll work very closely with Platform Leads, Lead Solution Architects and Senior Business Stakeholders to prioritise, estimate and plan work. Constantly looking for opportunities to get the most out of our Agile, DevOps teams and introducing process and technology improvements such as Data Mesh and Cloud Native engineering tools to maximise velocity and business value. You will work primarily on our AWS data platform but there are also some opportunities to work our Azure platform.

What You´ll Need

In order to be successful, you will be experienced with managing tech leads (or at least managing large and complex engineering teams), delivering across key elements of the data & analytics domain with proven experience working throughout the technology project lifecycle in Agile environments. You will lead a team that has delivered cloud solutions, such as the development of auto-scaling containerised ETL. Experience of ETL & cloud techniques and tools (we currently use DBT Cloud, AWS Glue or AWS Lambda for ETL, AWS data & analytics services such as S3, Athena, SQS, SNS, Redshift, Postgres, Snowflake, Starburst, Aurora, MySQL, EMR, HIVE, PIG, Spark),

Experience of visualisation technologies (Power BI) and building scalable high availability analytics solutions, providing continuous integration and continuous development (we use GitHub Enterprise), Experience of data analysis - profiling, investigating, interpreting and documenting data structures. Familiarity with data modelling techniques and hands on modelling experience (third normal form and star schema)

You´ll be leading a team of senior engineers who work closely with IT colleagues mainly in the UK, Chennai, Barcelona and Guadalajara. We have business partners and team members spread globally, so you would have experience of a variety of delivery management approaches, providing technical leadership throughout our software development lifecycle, from the initial development of a technical design based on a blueprint, right through to hypercare and continuous enhancements across many projects.

WHY JOIN US?

We´re a network of entrepreneurial self-starters who contribute to something far bigger. There´s a diversity of expertise in our Technology group that´s unique to AstraZeneca - it allows us to dive deep into exploring new leading-edge technology. We enable AstraZeneca to perform at its peak by delivering world-class technology and data solutions, unlocking the potential of science. We optimise and evolutionise AstraZeneca by maximising efficiencies and finding new ways to drive productivity. From automation to data simplification.

A place to be open and transparent - we speak up, think creatively and share ideas. Our diverse contributions help us to make better decisions. But we have a constant drive to innovate, and an appreciation for high standards. It takes challenging the status quo to add value in our ever-evolving environment. We love it here because put simply, we make a meaningful impact.

Technology at AstraZeneca is a home for purposeful disruptors!

SO, WHAT NEXT?

If reading the above has tickled your senses and you´re ready to join us, hit the apply button, and we look forward to reviewing your application soon.

• Nivell d'experiència---
• Tipus de contracteA temps complert
• Publicada27 de febr.

Machine Learning Office

Location: Barcelona - Spain (3 days working from the office and 2 days working from home)
Introduction to Role:

Join our Commercial Data Science and AI team, where we deliver digital and technology solutions to multiple business areas across OBU and BBU in the Global markets. As the Director for Data Science & AI Product (OBU), you will be responsible for driving AI initiatives, fostering innovation, developing cutting-edge products, ensuring adoption, working with a multi-functional team and most importantly making a difference in the lives of our patients and health care professionals. The focus of your role will be on Oncology business across Europe, Canada and International markets. This role partners closely with the Oncology therapy area leaders, digital/data/artificial intelligence teams, commercial teams, market access and enterprise platform teams to transform high value business problems into scalable, business friendly, impactful and compliant AI products which deliver measurable impact for the patients and the business.

Accountabilities:

As a member of the Commercial Data Science & AI team our mission is to take a patient-centric, data-driven approach to personalize and transform healthcare delivery to the millions of patients along with a multi-disciplinary team of physicians who care for them. This responsibility involves working closely with cross-functional Commercial, Medical, and Business leaders to identify, prioritize, and develop Data Science, AI, and Advanced Analytics Platforms & Products across Oncology businesses. The scope of this role is Global serving all the markets where AstraZeneca´s life-changing medicines are approved to help Patients live longer and realize AZ´s bold ambition.

Strategy and portfolio leadership: you will define the AI product vision and multi-year roadmap for the Oncology business unit. You would prioritise a balanced portfolio across use cases on commercial analytics, operational productivity, physician engagement, scientific engagement which are aligned to therapy area and brand strategies.

Product discovery and design: you will be leading discovery with cross functional partners to identify business problems, user journeys and validate feasibility, desirability, and the business impact. These insights will be translated into product requirements while championing the human centre design and responsible AI for our Oncology business units.

Data and AI excellence: you will be partnering with data engineering and platform teams to secure data access and quality. You will work with data scientist and AI engineers to guide on model selection and evaluation. The solution solutions should be scalable, aligned to the business varieties and make sound business impact for various tumour types and indications.

Cross-functional collaboration: You will be working with cross-functional teams across the geographies comprising of Business Excellence, brand and marketing teams and AI Scientists and AI Engineers. You will be liaising with other Global functions and teams to ensure we are following an enterprise approach for scaling AI products across indications, therapy areas and geographies.

Stake holder and change leadership: you will be building trust with senior leaders, brand and marketing teams, end users and the wider community. You will orchestrate communication, adoption programs, manage vendors and partnerships and represent DSAI team for OBU across the enterprise. You will play a key role in shaping our AI strategy, developing pioneering AI solutions, ensuring successful project delivery, and implementing standard methodologies and hence deliver value for the business.

End to end delivery: You will work to define and implement the AI strategy, finding opportunities for AI adoption and driving business impact. You will lead the end-to-end delivery of AI projects, from ideation to deployment. You will maintain a deep understanding of AI and machine learning technologies, MLOps tools, and stay updated on industry trends. You will also be responsible for ensuring adoption of the AI products in the geographies and by the end users.

Key Responsibilities:

- Develop a deep understanding of the Oncology business, different tumor types, indications and the core markets.

- Understand the current solution and the framework/architecture

- Plan and execute the deployment of products across other TA and geographies

- Collaborate with matrix teams (sales, marketing, IT, external vendors, etc.) to ensure effective and efficient deployment and adoption of product.

- Present the solution to stakeholders and solve the real-world business OBU problems

- Leverage AI/ML, mathematical programming, and statistical modeling to develop solutions that create a competitive advantage for our commercial organization.

- Support the full solution architecture cycle and lead the development work of core components.

- Actively seek out, develop, and share best practices. Stay abreast of the evolving business and technical landscape and remain current on the major data science development particularly in the Oncology business.

- Manage onshore and offshore external consultants

Essential Skills/Experience:

- Bachelors or Masters (or equivalent numbers of years of experience) in mathematics, computer science, engineering, physics, statistics, computational sciences or a related field.

- 10+ years of product management in digital or data science products and deploying AI products at scale.

- Proven experience in life sciences or healthcare ideally Oncology across R&D, medical or commercial use cases.

- Excellent communication and presentation skills, with the ability to convey complex AI concepts to non-technical partners.

- Ability to take initiative/navigate in a matrix environment.

- Project Management skills/Presentation skills, with a track record of leading successful AI projects and teams.

- Effectively interact and build strong relationships with colleagues from different functions/countries.

- Knowledge of software development principles

- Experience in data and analytics (AI / ML desirable but not essential).

At AstraZeneca, we connect across the whole business to power each function to better influence patient outcomes and improve their lives. We are dedicated to combining the science with our knowledge, to deliver greater value for patients every day. We take data seriously. Driven by the impact we know we can have; our high ethical standards never slip. This is the place where innovation meets large-scale impact. We are often seen breaking new ground, but without ever compromising on doing things the right way. We impact patients lives. Empowering and enabling the business to run faster and better, we play a part in improving lives across the world.

Ready to join a diverse team of inclusive self-starters? Apply now to be part of our journey towards becoming a digital and data-led enterprise!

• Nivell d'experiència---
• Tipus de contracteA temps complert
• Publicada27 de febr.

React Java Node.js MongoDB Agile CSS Azure HTML Docker Kubernetes Cucumber REST TypeScript AWS DevOps Kafka Office

At Evinova, we´re revolutionizing clinical trials by developing cutting-edge digital solutions that connect patients, healthcare professionals, and regulators. Our mission is to simplify participation in clinical trials and improve health outcomes through innovative technology. We believe in creating meaningful software that empowers individuals and transforms lives. If you´re passionate about building scalable, high-quality backend systems and working in a collaborative environment, we´d love for you to join our team.

Accountabilities:

As a Senior Software Engineer within a full-stack team, you´ll be an essential part of a cross-functional team, working with a focus on backend services that power our Product Suite to improve the experience for patients and healthcare professionals alike, and you´ll be required, when relevant, to provide full stack expertise for frontend development as well. You´ll design and implement robust, API-based and Data Streaming services to support a product that must adhere to regulations during the development process to allow usage of the product as part of clinical trials.

You´ll also work to bring AI usage to the forefront of the development process to maximize productivity while maintaining code and quality ownership. You will also work to integrate agentic AI based logic into the product to leverage AI´s capabilities to resolve complex tasks.

Your day-to-day responsibilities will include:

- Building and maintaining functionality for our applications.
- Making sure the design and implementation are scalable, and can work within high-performing RESTful APIs and Data Streaming solutions.
- Working with our DevOps and Platform teams in the enablement of seamless automated deployment, redeployment, and recovery of infrastructure through infrastructure as code.
- Collaborating with other engineers, product owners, and stakeholders to refine features and ensure they deliver outcomes.
- Writing high-quality, clean, maintainable, and testable code, with a strong focus on a test automation-first mindset, and maximizing productivity through usage of AI without relinquishing code and quality ownership.
- Troubleshooting, diagnosing, and resolving bugs and performance issues, and analyzing them to improve the troubleshooting process.
- Participating in Agile ceremonies, such as daily stand-ups and sprint planning.

Essential Skills/Experience

- Proficiency with at least one backend coding language such as Java, Node.js, etc
- Proficiency with frontend coding languages such as Typescript and/or React.
- Proficiency with HTTP, HTML, CSS, REST APIs and JSON structure, openAPI spec.
- Experience working with MongoDB or Document based storage experience.
- Experience with unit tests, and BDD testing framework like Cucumber.
- Experience with AI as a developer to maximize productivity.
- Experience with agentic AI systems.
- Data Streaming experience using Kafka or similar.
- AWS tooling.
- Experience with CI/CD tools, such as Azure DevOps or GitHub Actions.
- Familiarity with containerization tools and orchestration like Docker and Kubernetes.
- Strong understanding of software development principles, such as object-oriented programming and Agile methodologies.
- 10+ years of professional experience in software development.

Desirable Skills/Experience

- Experience designing solutions for complex projects within large organizations.

At AstraZeneca, our work has a direct impact on patients, transforming our ability to develop life-changing medicines. We empower the business to perform at its peak by combining cutting-edge science with leading digital technology platforms and data. Here, you can explore new solutions, experiment with leading-edge technology, and tackle challenges in a modern technology environment. With countless opportunities to learn and grow, you can shape your own path while being supported all the way. Join us to innovate, disrupt an industry for the better, and change lives.

When we put unexpected teams in the same room, we unleash bold thinking with the power to inspire life-changing medicines. In-person working gives us the platform we need to connect, work at pace and challenge perceptions. That´s why we work, on average, a minimum of three days per week from the office.

Are you ready to transform clinical trials and help improve health outcomes around the world? Apply now to become a part of Evinova´s innovative journey in health tech and join us in our unique and ambitious world.

• Nivell d'experiència---
• Tipus de contracteA temps complert
• Publicada27 de febr.

Agile Azure Power BI Tableau

AstraZeneca is advancing its Commercial data transformation through the One Data Foundation, with a strong focus on harmonized, insight-driven data products that empower better decision-making across the globe. To support this vision, the GIBEX is establishing a cross-functional suite of Level 2 and Level 3 data products across Customer Engagement and Brand Performance domains with potential scaling to further data products.

The ODF Market Adoption & Enablement Manager drives country-level implementation, adoption, and continuous fit of One Data Foundation across selected markets. The role ensures harmonized L2/L3 data products are used in decision-making, meet local needs, and provide structured feedback into global product roadmaps. Operating at the intersection of business, technology, and data governance, the manager defines and delivers scalable data assets that align with strategic KPIs, stakeholder needs, and technical standards.

Accountabilities

- Market Deployment

- Lead onboarding of assigned markets to One Data Foundation L2/L3 data products

- Align rollout timelines with global / regional waves

- Own market readiness, go-live coordination, and phases sign-off

- Adoption & Change

- Drive adoption with market leaders (BU Directors, IBEX/SFE, Omnichannel)

- Embed ODF into business routines, reporting cadences, and decision-making

- Act as the primary ODF point of contact for markets

- Fit-for-Need & Feedback

- Capture market-specific needs and KPI nuances at L3

- Ensure alignment to global L2 standards and definitions

- Channel structured, evidence-based feedback to Global Product Directors

- Governance & Value Tracking

- Track adoption, usage, and value realization

- Identify risks and issues; escalate with mitigation proposals

- Report progress and insights into regional / global governance forums

- Cross-Functional Coordination

- Bridge markets with Commercial, IT, GBS, and Data teams

- Translate market needs into structured, scalable requirements

- Reinforce consistency while enabling market relevance

Essential

- Bachelor´s or Master´s degree in a relevant field

- Minimum 5 years of experience in data product management, Sales Force Excellence, data strategy, or analytics leadership within matrixed environments in the pharmaceutical or related healthcare industry

- Proven track record in delivering scalable and harmonized data products across commercial domains (e.g., Customer Engagement, Brand Performance)

- Strong understanding of KPI frameworks, business metrics, and data governance principles

- Ability to understand complex business requirements and translate them into structured, actionable data product deliverables

- Demonstrated success in cross-functional collaboration across business, technology, and data governance teams

- Experience engaging regional and local stakeholders to drive alignment and adoption

- Strong communication, facilitation, and stakeholder management skills, with the ability to influence at multiple levels

- Familiarity with Agile delivery methodologies, product roadmaps, and backlog prioritization

- Comfortable working in a Center of Excellence model across diverse geographies and teams

Desirable

- Experience managing commercial data strategies, roadmaps, and business alignment at regional or global scale

- Familiarity with AstraZeneca platforms and tools (e.g., IMX, Veeva CRM, NextGen, Brain components, IQVIA data)

- Hands-on experience with data visualization and reporting tools (e.g., Power BI, Tableau, Qlik)

- Understanding of omnichannel analytics and digital engagement measurement

- Experience working with modern data architectures and platforms (e.g., Snowflake, Azure, Data Mesh)

- Experience in leading workshops and steering committee interactions with senior stakeholders

- Knowledge of data privacy, regulatory compliance, and pharma-specific governance frameworks

• Nivell d'experiència---
• Tipus de contracteA temps complert
• Publicada27 de febr.

API Cloud Coumputing Kubernetes SaaS AWS Office

Role based in Barcelona - 3 days onsite office / 2 days at home

This role operates as the primary technical escalation point for all cyber threats identified by our Security Operations Center (SOC) and is responsible for validating, investigating, and directing responses to escalated security incidents. This role provides a unique blend of technical detection engineering with threat-informed cyber defense strategy ownership.

This position is ideal for technically skilled cybersecurity professionals who thrive in fast paced global organizations and enjoy solving complex operational challenges with innovative approaches. In addition to supporting the Cyber Defense pillar, this role will have daily exposure across our entire cybersecurity function and working collaboratively to secure Evinova´s Digital Health Suite.

This position will report directly to the Evinova Head of Cybersecurity with a dotted line to the Head of Cybersecurity Engineering and will have several peers to collaborate with; ensuring adequate leadership visibility and cross-functional exposure across adjacent cyber domains. If you are a cyber defense pro looking to gain cyber leadership experience, this is the perfect role for you.

Due to the business critical nature of this role, there may be times where after-hours support is needed to address cybersecurity incidents. Evinova cybersecurity is a globally distributed team with team members located in both the United States and Spain.

Key Responsibilities:

SIEM Platform Management (Splunk Focus)

- Oversee the work of our outsourced service provider who provides SIEM maintenance support

- Provide architectural and operational ownership of Splunk ES as the enterprise detection platform

- Design data ingestion strategies covering cloud telemetry, identities, SaaS services, and system audit logs

- Engineer compliant data models to normalize security telemetry and enable scalable detection use case development

- Build operational dashboards supporting SOC monitoring, incident tracking, regulatory reporting, and executive cyber risk metrics

- Optimize search performance, indexing strategies, and storage utilization to balance detection depth with cost efficiency

- Integrate third-party and native security tooling into Splunk via APIs, forwarders, and data pipeline engineering

Cloud Detection and Response Architectures (AWS-focused)

- Provide cyber defense telemetry requirements into security architecture reviews for new platforms, applications, and cloud services

- Engineer and operationalize detections leveraging native AWS telemetry sources such as Cloud Trail, Guard Duty, Security Lake, VPC Flow Logs, Cloud Watch, EKS Logs, and others

- Develop detection use cases for IAM privilege escalation, federated identity abuse, cross-account compromise, API misuse, and serverless exploitation

- Monitor containerized and Kubernetes workloads for runtime threats, suspicious process execution, and anomalous network communication patterns

- Partner with Cloud Security peers to define cloud logging standards, retention requirements, and forensic readiness controls

Detection Engineering and Threat Analytics

- Architect, engineer, and operationalize advanced threat detections within Splunk Enterprise Security, including correlation searches, risk-based alerting frameworks, behavioral detections, and anomaly signals aligned to cloud computing threat scenarios

- Design detection logic mapped to the MITRE ATT&CK techniques, cloud threat kill chains, and identity compromise attack paths to ensure comprehensive adversary coverage

- Build security telemetry correlation across cloud control planes, SaaS platforms, and identity providers such as Microsoft EntraID to detect multi-stage intrusion attempts

- Collaborate with our outsourced SOC to continuously tune log sources / detection content to reduce false positives, eliminate alert fatigue, and improve "signal-to-noise" ratios within the SOC escalation pipelines

- Utilize threat intelligence feeds to translate emerging adversary Tactics, Techniques, and Procedures (TTPs) into actionable detection use cases and SIEM content updates

- Establish detection lifecycle governance including use case design documentation, testing validation, and performance monitoring

- Develop "detection-as-code" pipelines leveraging version control and CI/CD processes to ensure repeatable and auditable deployment of correlation logic

Threat Detection, Analysis, and Response

- Serve as the Tier 2 / Tier 3 escalation path for all relevant security alerts and suspicious activity escalated by our SOC

- Conduct deep technical investigations spanning SIEM telemetry, adjacent platforms, cloud logs, identity activity, audit trails, and other forensic artifacts

- Perform threat actor behavior analysis to determine initial access vectors, persistence mechanisms, privilege escalation paths, and lateral movement patterns

- Lead threat hunting initiatives leveraging hypothesis-driven and intelligence-driven methodologies to proactively identify hidden threats

- Function as a Technical Lead / Incident Responder for confirmed cybersecurity incidents and directing containment actions that are proportionate with the incident severity

- Coordinate cross-functional response activities across Product Engineering / Platform Operations and Cybersecurity stakeholders

- Maintain the Cybersecurity Incident Response Playbooks and developing new playbooks for emerging incident types / technologies

- Produce formal investigation reports documenting incident timelines, impacted assets, regulatory exposure risk, and remediation recommendations

- Provide incident briefings summarizing incident severity, business impact, and containment posture to the Head of Cybersecurity, Head of Cybersecurity Engineering, and other relevant leadership stakeholders (including the Evinova Chief Technology Officer)

- Collaborate with Cybersecurity Assurance to document incident root causes, specifically focusing on control failures, detection gaps, and posture improvement actions

- Lead cyber crisis simulations and tabletop exercises with adjacent teams in Product Engineering and Platform Operations to ensure operational readiness

HIGHLIGHT THE SKILLS AND CAPABILITIES NEEDED

Minimum Qualifications:

- University degree in Cybersecurity, Information Security, Computer Science, Information Systems, or a related technical discipline.

- 6-8+ years of progressive experience in Cybersecurity Operations, Detection Engineering, Cybersecurity Incident Response, or Threat Intelligence functions within global enterprises

- Demonstrated hands-on engineering and operational experience administering and developing detection use cases in Splunk Enterprise Security, including correlation searchers, notable event frameworks, risk-based alerting, and data model utilization

- Hands on security monitoring and threat detection experience across Amazon Web Services (AWS) environments

- Operational familiarity with cloud native attack vectors including IAM privilege escalation, credential misuse, token compromise, API abuse, and cross-account persistence mechanisms

- Familiarity with SOAR platforms and automation engineering supporting incident response orchestration and alert enrichment

- Demonstrated experience leading or coordinating incident response activities, including containment execution, stakeholder coordination, forensic triage, and post-incident lessons learned

- Proficiency in SIEM query languages (e.g., SPL, KQL) and log analysis methodologies across various log sources

- Working knowledge of the MITRE ATT&CK framework and its application to detection engineering and threat actor simulation

Desired Qualifications:

- Professional certifications in Cybersecurity, Digital Forensics, Information Assurance or related technical field (e.g., CISSP, CCSP, Splunk Certified, GIAC)

- Proven experience operating as an escalation path within a Security Operations or Incident Response function, including leading technical investigations over advanced threats, account compromise, malware intrusions, and cloud security incidents

- Experience operating within hybrid SOC delivery models that include managed service providers or outsourced Tier 1 monitoring functions

- Deep engineering expertise within Splunk Enterprise Security, including detection-as-code pipelines, SIEM optimization, data onboarding, and search performance tuning

- Experience conducting proactive threat hunting operations

- Experience presenting incident findings and detection maturity metrics to security leadership, auditors, and other interested stakeholders

- Experience working within regulated environments such as Financial Services, Life Sciences / Pharmaceutical, and Healthcare

- While not required, having prior experience with the Microsoft security ecosystem is an added plus (e.g., Purview, Sentinel, Defender)