As part of the R&D OT Service and Security Delivery team, you will protect and strengthen our operational technology environment across R&D. You will design, deploy, and maintain security controls for our laboratories and pilot plants. You will work closely with OT security engineers across the organization, Cyber Security Office, Global Products and Technology, vendors, and site-based teams. We value hands-on problem solving, clear communication, and a growth mindset. You will grow your skills, make a measurable impact on safe, reliable operations, and help unite science, technology and talent to get ahead of disease together.
Responsibilities:
This role will provide YOU the opportunity to lead key activities to progress YOUR career. These responsibilities include some of the following:
Lead design and implementation of security controls for R&D OT systems and OT networks.
Lead risk and criticality assessments, vulnerability assessments, and threat intelligence OT assets.
Lead the Development and maintenance of our OT security controls/documentation, network segmentation, and secure configuration baselines.
Act as a key contact for support of incident response and forensic investigation for OT-related events and lead remediation efforts.
Work with OT and IT teams to integrate security monitoring, patching, and change management into operational processes.
Provide coaching and guidance to team members, site teams, technical support teams, and vendors on secure OT practices.
Lead efforts to enhance R&D's OT security posture through continuous improvement, efficiency improvements through automation and eliminating waste.
Quality, risk and compliance - Support operational technology compliance with internal security and risk management policies and practices, as well as external regulatory and statutory requirements e.g. GxP and that Tech continuity plans are in place for all critical areas.
People Management: Collaborate with internal owners of security technologies and act as an advocate for OT cybersecurity.
Why You?
Work arrangement: This role is hybrid with regular on-site presence at a R&D hub in the United States or United Kingdom and some remote work as agreed with the hiring manager.
Basic Qualifications:
We are seeking professionals with the following required skills and qualifications to help us achieve our goals:
Bachelor’s degree in computer science, engineering, cybersecurity, or related field, or equivalent experience.
Minimum of 5 year's of experience supporting OT systems within life sciences R&D environments.
Proficiency with cyber security tools (e.g., Palo Alto firewalls, tenable, Elisity)
Ability to problem solve and fault diagnose connectivity and network related issues
Practical hands-on experience with OT network architectures within an R&D setting, working across laboratories and pilot plants.
Experience conducting OT risk, criticality and vulnerability assessments and translating findings into actionable plans.
Knowledge of OT network segmentation, firewalls, secure remote access, vulnerability and patch management, and identity management.
Preferred Qualifications:
If you have the following characteristics, it would be a plus:
Certifications such as Global Industrial Cyber Security Professional (GICSP), ISA/IEC 62443 Expert, or Certified Information Systems Security Professional (CISSP)
Familiarity with regulatory and compliance frameworks that affect R&D operations.
Self-confident/assertive/dynamic/motivated behavior and being able to work on multiple tasks/projects in parallel unsupervised
Experience working in highly regulated industries or manufacturing environments.
Strong communication skills and experience collaborating with cross-functional teams in operational environments.
Experience supporting the operation and maintenance of systems/applications used in pharmaceutical, clinical, or related fields.
Experience integrating OT security with IT security platforms such as SIEM, vulnerability management, or identity solutions.
Familiar with cloud computing and cloud security standards for a cloud first environment.
Please visit GSK US Benefits Summary to learn more about the comprehensive benefits program GSK offers US employees.
Why GSK?
Uniting science, technology and talent to get ahead of disease together.
GSK is a global biopharma company with a purpose to unite science, technology and talent to get ahead of disease together. We aim to positively impact the health of 2.5 billion people by the end of the decade, as a successful, growing company where people can thrive. We get ahead of disease by preventing and treating it with innovation in specialty medicines and vaccines. We focus on four therapeutic areas: respiratory, immunology and inflammation; oncology; HIV; and infectious diseases – to impact health at scale.
People and patients around the world count on the medicines and vaccines we make, so we’re committed to creating an environment where our people can thrive and focus on what matters most. Our culture of being ambitious for patients, accountable for impact and doing the right thing is the foundation for how, together, we deliver for patients, shareholders and our people.
If you require an accommodation or other assistance to apply for a job at GSK, please contact the GSK Service Centre at 1-877-694-7547 (US Toll Free) or +1 801 567 5155 (outside US).
GSK is an Equal Opportunity Employer. This ensures that all qualified applicants will receive equal consideration for employment without regard to race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), parental status, national origin, age, disability, genetic information (including family medical history), military service or any basis prohibited under federal, state or local law.
Important notice to Employment businesses/ Agencies
GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.
Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK’s compliance to all federal and state US Transparency requirements. For more information, please visit the Centers for Medicare and Medicaid Services (CMS) website at https://openpaymentsdata.cms.gov/