Job Purpose

The Azure Security Analyst will be responsible for safeguarding our cloud infrastructure by implementing robust security measures, monitoring for potential threats, and responding to security incidents. This role plays a crucial part in ensuring the integrity, confidentiality, and availability of our IT and OT environments.

Why is this job critical?

As our reliance on cloud services grows, the need for vigilant security measures becomes paramount. The Azure Security Analyst will be at the forefront of defending our digital assets against cyber threats, ensuring compliance with industry standards, and fostering a culture of security within the organization. This position is critical to protecting our business operations, customer data, and maintaining our reputation.

Responsibilities

• CSPM Collaboration: Work with the security team to drive the next phase of Cloud Security Posture Management (CSPM), enhancing our cloud security framework.

• IT/OT Security Management: Manage and secure both IT and OT environments, ensuring comprehensive protection across all systems.

• Standards Compliance: Ensure compliance with ISA-99 and Purdue Model standards, working with security team on firewalls and network segmentation as required.

• Threat Monitoring: Continuously monitor for security threats, conduct regular security assessments, and implement necessary safeguards in Application vulnerability management, Cloud configuration, Access Management, infrastructure components currency etc.

• Security Findings Coordination: Coordinate with the security team to prioritize, classify, and automate security finding logs, ensuring timely and effective response.

• Incident Response: Collaboration with the Incident Response team to drive the resolution and mitigation of security findings in collaboration with the Application Product team, ensuring that all issues are addressed promptly and effectively.

• Reporting and Documentation: Prepare and present detailed security reports to management, highlighting key findings and recommendations.

Required Skills & Qualifications

• Education: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.

• Experience:

  • Minimum of 5 years of experience in IT/OT security environments.

  • Relevant certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or Azure Security Engineer Associate

  • Proven experience with ISA-99 and Purdue Model standards.

  • Experience in security firewalls and network segmentation.

  • Hands-on experience with Azure security tools and Cloud Security Posture Management (CSPM) solutions.

• Skills:

  • Strong analytical and problem-solving skills.

  • Excellent communication and collaboration abilities.

  • Ability to work effectively in a team-oriented environment.

  • Knowledge of automated security logging and reporting.

Why GSK?

Uniting science, technology and talent to get ahead of disease together.

GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology).

Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves – feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.

Important notice to Employment businesses/ Agencies

GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.

It has come to our attention that the names of GlaxoSmithKline or GSK or our group companies are being used in connection with bogus job advertisements or through unsolicited emails asking candidates to make some payments for recruitment opportunities and interview. Please be advised that such advertisements and emails are not connected with the GlaxoSmithKline group in any way.

GlaxoSmithKline does not charge any fee whatsoever for recruitment process. Please do not make payments to any individuals / entities in connection with recruitment with any GlaxoSmithKline (or GSK) group company at any worldwide location. Even if they claim that the money is refundable.

If you come across unsolicited email from email addresses not ending in gsk.com or job advertisements which state that you should contact an email address that does not end in “gsk.com”, you should disregard the same and inform us by emailing askus@gsk.com, so that we can confirm to you if the job is genuine.