Site Name: UK - Hertfordshire - Stevenage, GSK HQ
Posted Date: Dec 23 2024
We create a place where people can grow, be their best, be safe, and feel welcome, valued and included. We offer a competitive salary, an annual bonus based on company performance, healthcare and wellbeing programmes, pension plan membership, and shares and savings programme.
We embrace modern work practises; our Performance with Choice programme offers a hybrid working model, empowering you to find the optimal balance between remote and in-office work.
Discover more about our company wide benefits and life at GSK on our webpage Life at GSK | GSK
R&D Operational Technology (OT) Network Security Engineer
Within R&D Digital & Tech we are looking for an Operational Technology (OT) Network Security Engineer who will oversee networks used for R&D operations and have the necessary operational knowledge to specify network changes, assuring continued network availability. The OT Network Security Engineer will support Site Focal Point with technical insight necessary for secure file management according to policies and have a role in new system implementation and incident response.
It is key for the OT Network Security Engineer to have in-depth understanding of network architecture to design, implement, and manage secure and efficient networks and proficiency with cybersecurity tools (e.g., firewalls, intrusion detection/prevention systems) and techniques to protect network integrity and respond to security incidents.
The OT Network Security Engineer will have ownership and responsibility to deliver secure and reliable operational technology network infrastructure through the proactive identification and resolution of vulnerabilities.
Job Purpose
In this role you will
* Network Security: Support the implementation of key network controls such as segmentation to isolate different parts of the OT environment, zoning to secure conduits for communication between zones and firewall management.
* Change Management: Implement change control processes to ensure that network changes are appropriate tested and approved without disruption to critical OT operations.
* Incident Management: Support the technical response to operational technology-related incidents, ensuring rapid resolution to minimize downtime and operational disruption.
* Device Management: Harden devices such as switches, routers, firewalls by partnering and coordinating with the R&D OT Security Team and other key stakeholders aligned to GSK standards and proportionate to risk.
* Wireless Security: Support the security of OT communication protocols by enabling encryption, authentication or using protocol-specific security enhancements where possible.
* Vulnerability: Identify, triage and mitigate vulnerabilities that could lead to a breach of confidentiality, integrity or availability across the OT networks.
* Patch Management: Work with R&D lines and vendors to identify, test, validate and deploy security patches and updates for the OT network.
* Firewall Security: Configure and maintain firewall rules and associated documentation tailored for OT networks.
* Control Management: Support the implementation of cybersecurity measures specific to operational technology environments.
* Back-up and Restore: Work with key technology and business stakeholders to ensure that network configurations and critical security appliances such as firewalls are backed-up regularly and that recovery plans are in place in case of system failures, outages and/or cyber-attacks.
* Quality, Risk & Compliance: Support operational technology compliance with internal security and risk management policies and practices, as well as external regulatory and statutory requirements e.g. GxP and that Tech continuity plans are in place for all critical areas.
* People Management: Collaborate with internal owners of security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, configuration management, privileged identify management, etc.
Why you?
Basic Qualifications:
We are looking for professionals with these required skills to achieve our goals:
* Bachelor’s Degree - Technical Degree e.g. Engineering, Information Technology
* In-depth understanding of network architecture to design, implement, and manage secure and efficient networks.
* Proficiency with cybersecurity tools (e.g., firewalls, intrusion detection/prevention systems) and techniques to protect network integrity and respond to security incidents.
* Strong ability to collaborate with cross-functional teams and communicate technical insights effectively to support secure file management and other security initiatives.
* Expertise in ensuring R&D adherence to OT security policies and standards. Skill in driving initiatives that support security, innovation, and efficiency within the R&D environment.
* Self-confident/assertive/dynamic/motivated behavior & being able to work on multiple tasks/projects in parallel with supervision.
Preferred Qualifications:
If you have the following characteristics, it would be a plus:
* Master’s Degree – Technical Degree eg Engineering, Information Technology.
* Experience in network engineering roles.
* Completed relevant network related certifications (CompTIA Security+, GICSP, CISSP, ISA/IEC 62443) or equivalent.
* Experience supporting systems/applications used in pharmaceutical, clinical, or related fields would be an asset.
* Familiar with cloud computing and security standards for cloud first environment.
Closing Date for applications: 05th Jan 2025
Please take a copy of the Job Description, as this will not be available post closure of the advert.
When applying for this role, please use the ‘cover letter’ of the online application or your CV to describe how you meet the competencies for this role, as outlined in the job requirements above. The information that you have provided in your cover letter and CV will be used to assess your application.
#QEL
Why GSK?
Uniting science, technology and talent to get ahead of disease together.
GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology).
Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves – feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.
As an Equal Opportunity Employer, we are open to all talent. In the US, we also adhere to Affirmative Action principles. This ensures that all qualified applicants will receive equal consideration for employment without regard to neurodiversity, race/ethnicity, colour, national origin, religion, gender, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class*(*US only).
We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.
Should you require any adjustments to our process to assist you in demonstrating your strengths and capabilities contact us on Ukdiversity.recruitment@gsk.com or 0808 234 4391. The helpline is available from 8.30am to 12.00 noon Monday to Friday, during bank holidays these times and days may vary.
Please note should your enquiry not relate to adjustments, we will not be able to support you through these channels. However, we have created a UK Recruitment FAQ guide. Click the link and scroll to the Careers Section where you will find answers to multiple questions we receive .
As you apply, we will ask you to share some personal information which is entirely voluntary. We want to have an opportunity to consider a diverse pool of qualified candidates and this information will assist us in meeting that objective and in understanding how well we are doing against our inclusion and diversity ambitions. We would really appreciate it if you could take a few moments to complete it. Rest assured, Hiring Managers do not have access to this information and we will treat your information confidentially.
Important notice to Employment businesses/ Agencies
GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.
Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK’s compliance to all federal and state US Transparency requirements. For more information, please visit GSK’s Transparency Reporting For the Record site.