Roche
Manufacturing
SeniorSecurityEngineer
Neural analysis suggests this role is
optimal for Senior candidates.
“Senior Security Engineer at Roche. Skills: Manufacturing Cybersecurity, OT Security, Incident Response. Protect Roche Manufacturing systems. Manage local architecture”
Industry & Context.
Analyze technology fit; Propose effective solutions; Handle ambiguous requirements; Evaluate solution impacts
What They're Looking For.
Must Have
Minimum 5 years of experience in the IT Security field, Ability to analyze technology fit and propose effective, strategically aligned cybersecurity solutions and controls, Experience independently managing end-to-end security analysis tasks and leading the analysis of moderately complex cybersecurity incidents or vulnerabilities, Demonstrated ability to effectively manage relationships with a diverse range of cross-functional stakeholders on medium to large-sized engagements, acting as a trusted advisor, Proven track record of championing accountability by example, such as successfully taking on security incident lead and/or security project owner roles
Nice to Have
Bachelor’s degree in Computing Engineering, Automation Engineering or similar is an asset, Very good knowledge about local manufacturing and automation systems in use according to the current industry standards is an asset, Expertise in anti-virus software, intrusion detection, firewalls and content filtering in OT, Knowledge of risk assessment tools, technologies and methods, Expertise in designing secure networks, systems and application architectures, Disaster recovery, computer forensic tools, technologies and methods, System administration, supporting multiple platforms and applications, Endpoint security solutions, including file integrity monitoring, Deep understanding of cybersecurity terms and principles (defense-in-depth, network segmentation, security monitoring and incident response, access management, OT patch management, secure remote access, anti-malware protection etc. ), Advanced knowledge on networking (LAN/WAN) and industrial networking including significant low-level networking experience with the TCP/IP (Transmission Control Protocol/Internet Protocol), Solid knowledge on IT and OT infrastructure, including PLC security and protection, Current knowledge of technology capabilities and types, and techniques of hacking, Java, Net, C++, Python, bash, power shell, One of five potential security-related certifications (Certified Ethical Hacker (CEH), CompTIA Security+, Certified Information System Security Professional (CISSP), ISA/IEC 62443 Cybersecurity Specialist certification, Global Industrial Cyber Security Professional (GICSP)), Solid knowledge on IT infrastructure and service deployment model within Roche, Good knowledge of the Roche IT Security Standards
What You'll Do.
Protect Roche Manufacturing systems
Manage local architecture
Provide engineering support
Keep manufacturing environment updated
Participate in technical design reviews
Support development of standards
Advise on security measures
Coordinate vendor activities
Review technical designs
Design OT Security Monitoring
Sustain OT Security Monitoring
Provide technical support during Incident Response
Minimize incident impact
Conduct technical investigation
Conduct forensic investigation
Manage end-to-end security analysis tasks
Contribute to complex problems
Mentor junior team members
Develop security best practices
Identify security stakeholders
Manage stakeholder relationships
Act as trusted advisor
Define stakeholder engagement strategies
Shape stakeholder perspectives
Translate requirements into plans
Manage business analysis activities
Handle ambiguous requirements
Navigate stakeholder environments
Evaluate solution impacts
How You'll Work.
Team & Collaboration
Work with system owners; Collaborate with Cybersecurity Site Representative; Catalyst for cross-site collaboration; Manage relationships with cross-functional stakeholders; Facilitate workshops; Resolve conflicts; Shape stakeholder perspectives
Process & Methodology
Lead security project owner roles, Translate requirements into strategic implementation plans
Full Job Description
At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections, where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters. ### ### The Position The Senior Security Engineer plays a vital role in protecting Roche Manufacturing systems and networks against cybersecurity threats. This role is responsible for local architecture and engineering support, helping system owners and administrators in keeping their manufacturing environment up to date with the latest Roche Manufacturing Cybersecurity standards, baselines and industry best practices. Some of this role’s responsibilities are: * Taking part in technical design reviews, integration, testing, and documentation activities concerning new OT systems and/or changes to existing manufacturing system or infrastructure * Supporting development of Manufacturing Cybersecurity standards and baselines OT Cybersecurity Advisor during OT System planning phase and OT System Risk Assessment process * Advising System Owners in selecting appropriate security measures to mitigate risk * Coordinating of OT services and activities delivered by Vendors * Reviewing local technical designs as part of Manufacturing Cybersecurity Requests (in ServiceNow) * Designing and sustaining OT Security Monitoring (IIDS) at the Manufacturing Site * Providing technical support during Incident Response process including steps to minimize the impact, conducting a technical and forensic investigation into how the breach happened and the extent of the damage * Working closely with System Owners, Cybersecurity Site Representative and is a catalyst for cross-site collaboration on topics related to Manufacturing Cybersecurity
Applying for this Senior Security Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Roche?
Real rants from real employees. Read before you apply.