Join our team at AMGEN Capability Center Portugal, the #1 company in Best Workplaces™ (201–500 employees category) in 2024 by the Great Place to Work Institute. With over 400 talented individuals from more than 40 nationalities, our Lisbon center thrives at the intersection of innovation, excellence, and inspiration. This is your opportunity to explore the future of healthcare through technology and digital innovation, supporting our mission To Serve Patients.

What you will do

• Design and implement secure cloud architectures ensuring alignment with enterprise security frameworks and regulatory requirements
• Develop and enforce cloud security controls including IAM policies, network segmentation, encryption standards, and key management (KMS, HSM) to safeguard data and workloads
• Continuously assess cloud configurations using automated compliance and vulnerability management tools to identify misconfigurations and security risks
• Develop and maintain Infrastructure-as-Code (IaC) templates (e.g., Terraform, CloudFormation) with embedded security guardrails and policy-as-code enforcement
• Integrate cloud-native logging and monitoring services (e.g., AWS CloudTrail, Azure Monitor, GCP Cloud Logging) into centralized SIEM platforms for threat detection and analysis
• Collaborate with DevOps and application teams to embed security into CI/CD pipelines and implement automated scanning, secrets management, and dependency validation
• Respond to cloud-related security incidents, conduct forensic investigations, and implement remediations to prevent recurrence and strengthen detection mechanisms
• Conduct threat modeling and risk assessments for new cloud solutions and emerging services, ensuring alignment with organizational risk appetite and compliance standards
• Research and evaluate emerging cloud technologies and security tools to enhance resilience, efficiency, and automation across cloud environments
• Develop and maintain technical documentation, runbooks, and operational standards for cloud security processes, controls, and procedures
• Provide expert guidance and training to engineering, operations, and product teams on secure cloud design principles and best practices
• Lead efforts and participate in audits covering information security services and technologies

What we expect of you

• Minimum Education required - High School diploma. (Ideally a Bachelor degree on a related career field)
• Ideally +/- 5 years of Information Security or Information Technology experience

Must-Have Skills

• Strong command of security foundations, e.g. authentication, authorization, confidentiality, integrity, and availability
• Solid understanding of security principles such as the principle of least privilege or economy of mechanism
• Comprehensive experience with Amazon AWS, understanding of Identity and Access Management, Data Protection, Secure DevOps, Security Operations, and other security domains for Cloud
• Working/Emerging knowledge of Enterprise Cloud Solutions across IaaS, PaaS & SaaS. This may include: AWS, Azure, OpenStack, Cloud Foundry, Salesforce, Microsoft Office 365, Box, etc.
• Emerging Knowledge of Identity Governance, Cloud SOC/SIEM, Public, Private and Hybrid cloud solutions
• Technical experience with micro services programming (AWS Lambda, Docker, etc.)
• Experience using AWS Cloud Services (EC2, DynamoDB, API Gateway, RDS, Lambda, CloudFront, CloudFormation, CloudWatch, Route 53, etc.)
• Extensive experience in architecting, designing and programming applications and RESTFUL Services in an AWS Cloud environment
• Experience architecting highly available systems that utilize load balancing, horizontal scalability and high availability
• Experience in one of the following: Java/Node.js/Python/JSON policy language
• Team-oriented, placing priority on successful completion of team goals
• Self-starter with a high degree of initiative
• CISSP or equivalent security-related industry certifications
• AWS Certified Professional or higher

Good-to-Have Skills

• Good working knowledge of cryptography, e.g. key management, symmetric, and asymmetric encryption
• Good hands-on experience with AWS foundation services related to compute, network, storage, content delivery, administration and security, deployment and management, automation technologies
• Good verbal and written communication skills

What you can expect of us

• Work That Matters – Build tech that accelerates scientific breakthroughs and helps patients worldwide
• Modern Tech Stack – Cloud-first, automation-focused, AI-powered
• Global Scale, Agile Mindset – Collaborate across continents while working in nimble, high-impact teams
• Continuous Learning – Access to certifications, trainings, mentorship, and career mobility
• Amgen Total Rewards Plan – Comprehensive benefits in healthcare, finance, and well-being
• Flexibility – Hybrid work model with time split between our Lisbon office and remote work

Compensation

201–500