Join our team at AMGEN Capability Center Portugal, number 1 company in Best WorkplacesTM https://www.greatplacetowork.pt/ ranking in Portugal (category 201-500 employees) by the Great Place to Work Institute. We have a team of over 300 talented people and more than 35 different nationalities, diverse areas of expertise and professional experience that are shaping the future of healthcare. This is your chance to explore a world of opportunities in different areas such as Cybersecurity, Data & Analytics, Digital, Technology and Innovation, Finance, General & Admin, Human Resources, Regulatory Affairs and many more. In Lisbon's city center, our AMGEN office fosters innovation, excellence, and inspiration. Come thrive with us at AMGEN, supporting our mission To Serve Patients. What we do at AMGEN matters in people’s lives.

What you will do

• Assist in implementing and maintaining Security Information and Event Management (SIEM) and User and Entity Behavior Analytics (UEBA) platforms, with a focus on supporting the log collection strategy and associated infrastructure
• Perform routine operational tasks including monitoring SIEM health, identifying issues, documenting resolutions, and supporting integration with other tools under guidance from senior engineers
• Contribute to the ongoing improvement of SIEM and UEBA processes by documenting procedures, updating configurations, and suggesting enhancements
• Develop and maintain basic scripts and automation routines to support log ingestion, normalization, and alerting in collaboration with more senior team members
• Work with internal teams and escalate to senior staff or external partners to support remediation or mitigation of identified vulnerabilities and SIEM platform issues
• Support incident responders by providing relevant SIEM data and assisting with initial investigations as directed
• Collaborate with security operations and cyber threat intelligence teams in daily tasks, including alert validation, correlation rule tuning, and basic troubleshooting
• Assist in tracking vendor support cases and maintain documentation related to tools and strategic partners
• Participate in internal and external audits, providing documentation and support as required for SIEM-related controls and processes

What we expect of you

• Master’s degree with 1 to 2 years of experience in Information Systems or related field OR
• Bachelor’s degree with 3 to 4 years of experience Information Systems or related field OR
• Diploma with 4 to 5 years of experience in Information Systems or related field
• Proven track-record in understanding of common security monitoring and detection engineering practices
• Demonstrate in-depth knowledge of cybersecurity frameworks, technologies, and best practices
• Experience in risk management, incident response, and security governance
• Strong knowledge of security architecture frameworks and principles

Must-Have Skills

• Proficiency with deploying and running log collection infrastructure (e.g. Splunk Universal Forwarder, Fluentd, Cribl) and SIEM solutions (e.g. Qradar, Splunk, ArcSight, Sentinel)
• Experience with network security, endpoint protection, and incident response
• Proficiency in scripting and automation (e.g., Python, Bash) is a plus
• Experience with deploying, running and monitoring cloud-hosted infrastructure
• Professional Certifications: GCDA (preferred), GSEC (preferred), CompTIA Security+ (preferred), CISSP (preferred)
• Soft Skills: Excellent analytical and solving skills, Strong verbal and written communication skills (English), Ability to work effectively with global, virtual teams, High degree of initiative and self-motivation, Ability to handle multiple priorities successfully, Team oriented, with a focus on achieving team goals, Strong presentation and public speaking skills

What you can expect of us

• Work That Matters – Build tech that accelerates scientific breakthroughs and helps patients worldwide
• Modern Tech Stack – Cloud-first, automation-focused, AI-powered
• Global Scale, Agile Mindset – Collaborate across continents while working in nimble, high-impact teams
• Continuous Learning – Access to certifications, trainings, mentorship, and career mobility
• AMGEN Total Rewards Plan – Comprehensive benefits in healthcare, finance, and well-being
• Flexibility – Hybrid work model with time split between our Lisbon office and remote work

Compensation

201-500