"Alerted.org

Life changing therapies. Global impact. Bridge to thousands of biopharma companies and their patients.

We are PCI.

Our investment is in People who make an impact, drive progress and create a better tomorrow. Our strategy includes building teams across our global network to pioneer and shape the future of PCI.

Position Summary

The Senior Security Engineer will serve as the technical security lead for PCI Pharma, responsible for security architecture, application security, vulnerability management, and security engineering across enterprise and manufacturing environments. This role combines hands-on technical work with strategic security advisory, ensuring protection of pharmaceutical intellectual property, patient data, and compliance with industry regulations.

Key Responsibilities

+ Design and implement security architecture for cloud (Azure, AWS), on-premises, and hybrid environments

+ Lead application security program including SAST/DAST integration, secure code reviews, and developer training

+ Manage enterprise vulnerability management using Nessus, including scan scheduling, risk prioritization, and remediation tracking

+ Architect and maintain Zero Trust security framework including identity-centric access controls

+ Conduct security assessments for new applications, infrastructure changes, and M&A integrations

+ Design network segmentation strategies for IT/OT environments and manufacturing systems

+ Implement and manage endpoint security solutions (EDR, AV) in coordination with RUN team

+ Lead security incident response for complex technical investigations

+ Develop security standards, policies, and technical guidelines aligned with pharmaceutical regulations

+ Evaluate and recommend security tools and technologies for continuous improvement

+ Coordinate penetration testing activities and remediation of findings

+ Provide security consultation for cloud migrations and digital transformation initiatives

Required Qualifications

+ Bachelor's degree in Computer Science, Cybersecurity, or related field

+ 7+ years of progressive cybersecurity experience with 3+ years in security engineering/architecture

+ Deep expertise in vulnerability management tools (Nessus, Qualys, or Rapid7)

+ Strong application security knowledge including OWASP Top 10, secure SDLC, and DevSecOps practices

+ Experience with cloud security in Azure and/or AWS (security groups, IAM, encryption)

+ Proficiency in network security including firewalls, IDS/IPS, and segmentation

+ Knowledge of endpoint security solutions and EDR platforms

+ Strong scripting abilities (PowerShell, Python) for security automation

+ Experience in regulated industries with compliance requirements

+ CISSP, CISM, or equivalent security certification

Preferred Qualifications

+ Master's degree in Cybersecurity or Information Assurance

+ Pharmaceutical or healthcare industry experience with GxP knowledge

+ GPEN, OSCP, or other hands-on security certifications

+ Experience with IT/OT security and industrial control systems

+ Knowledge of 21 CFR Part 11 and computer system validation

+ Cloud security certifications (AZ-500, AWS Security Specialty)

Technical Skills & Tools

Nessus / Tenable.io vulnerability management • SAST/DAST tools (SonarQube, Checkmarx, Burp Suite) • Azure Security Center / AWS Security Hub • EDR platforms (CrowdStrike, Defender for Endpoint) • SIEM platforms (Splunk, Sentinel) • Firewall management (Palo Alto, Cisco ASA) • PowerShell / Python security scripting • Git and CI/CD security integration

Key Performance Indicators

+ Critical vulnerability remediation SLA (target: <7 days)

+ Application security review coverage (target: 100% of new apps)

+ Security incident response time (target: <1 hour for P1)

+ Penetration test finding closure rate (target: >90% within 90 days)

+ Zero Trust implementation milestones (per roadmap)

Join us and be part of building the bridge between life changing therapies and patients. Let’s talk future (https://pci.com/)

Equal Employment Opportunity (EEO) Statement:

_PCI Pharma Services is an Equal Opportunity/Affirmative Action Employer. We do not unlawfully discriminate on the basis of race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic or civil union status, familial status, affectional or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, or any other protected status._

_At PCI, Equity and Inclusion are at the core of our company’s purpose: Together, delivering life-changing therapies. We are committed to cultivating an inclusive workplace by holding ourselves accountable to the highest standards of understanding, fairness, respect, and equal opportunity – at every level. We envision a PCI community where everyone can belong and grow, and we strive to bring this vision to reality by continuously and intentionally assessing our people practices, policies and programs, marketing approach, and workplace culture._

Why work for PCI Pharma Services?

At PCI, we have an uncompromising focus on providing quality and operational excellence and providing the industry leading customer experience. Our people make all of this happen, so providing an industry leading experience for our people is equally as important. By creating an authentic culture of purposeful work, we aspire to be an interesting and fulfilling place for talented individuals to grow careers. We live a philosophy of intentional learning combined with real-life experience supported by a fair and competitive rewards program. We are individuals, teams and a company that believes in our purpose and our approach is simple, the people who work at PCI fuel our business; we don’t say no, we figure out how.

PCI Pharma Services is an Equal Opportunity Employer/Vet/Disabled