Apply on Employer Site

Merck · 9 hours ago

Cloud Security Engineer-1

USA - Pennsylvania - West Point

Full-time

Hybrid

Director/Executive

$142K/yr - $224K/yr

8+ years exp

Merck is a leading global healthcare company, and they are seeking an Associate Director of Product Security Platform Engineering. The role focuses on integrating security controls across cloud environments and corporate infrastructure while collaborating with various teams to enhance the security posture of multi-cloud and hybrid enterprise environments.

BiotechnologyHealth CareMedicalPharmaceutical

Comp. & Benefits

No H1B

Responsibilities

Lead the design, engineering, and scaling of enterprise product security platforms

Ensure cloud‑native security patterns are deeply integrated across AWS, Azure, etc environments

Conduct technology research to evaluate emerging threats, vulnerabilities, and cloud provider risks

Establish and maintain secure architecture standards, configuration baselines, and best practices for cloud and product security platforms

Drive modernization and automation of security workflows with a DevSecOps mindset

Translate enterprise security strategy and policy into actionable architecture, platform capabilities, and engineering implementations

Define security requirements and enable collaborative development of scalable system and service architectures

Collaborate on cloud security governance, data protection strategy, and secure adoption frameworks

Guide platform teams and developers to close gaps in cloud posture, application security, and data protection maturity

Perform Security Assessments using frameworks such as CSA, NIST, PCI, and internal controls

Ensure compliance with enterprise risk standards, policies, regulatory expectations, and audit requirements

Review cloud services and recommend secure implementation patterns with appropriate monitoring and guardrails

Conduct investigative research and analysis of complex security issues, including threat modeling and vulnerability analysis

Write code, scripts, and automation to enhance security tooling, dashboards, integrations, and workflows

Develop new tools and technologies for Cloud Security and platform security engineering

Tune and enhance existing Information Security tools, platforms, and detection engines

Serve as a technical leader on cloud and cybersecurity matters for engineering, cloud COE, and DevOps teams

Act as a consultant to product teams to ensure new products and cloud services are deployed securely

Participate in enterprise architecture forums and influence long‑term cloud and security architecture direction

Engage non‑technical stakeholders effectively, translating technical risks into business‑aligned decisions

Mentor team members and serve as an escalation point on complex or unusual issues

Qualification

Cloud SecurityInformation SecurityCybersecuritySecurity Architecture DesignAWSDevSecOpsVulnerability ManagementData ProtectionBusiness AcumenInvestigative ResearchEmerging TechnologiesFirewall SecurityApplication SecurityCybersecurity OperationsPlatform as a Service (PaaS)

Required

Bachelor's degree in computer science, Engineering, Information Systems Security, or equivalent professional experience

8+ years in Information Security, Cybersecurity, or IT roles with increasing complexity and accountability

Experience integrating security into CI/CD pipelines and cloud environments

Strong business acumen in risk management, operations, and emerging technology trends

Accountability

Amazon Web Services (AWS)

Application Security

Business Acumen

Business Management

Cloud Computing

Cloud Security

Cybersecurity

Cybersecurity Operations

Data Protection

Delivery of Security Applications

Design Applications

DevOps Coaching

Emerging Technologies

Firewall Security

Influence

Information Security

Information Technology (IT) Risk Management

Investigative Research

Platform as a Service (PaaS)

Security Architecture Design

Security Governance

SLA Management

System Designs

Preferred

Extensive security engineering experience across IaaS, PaaS, and SaaS environments

Knowledge of data protection for structured and unstructured data using classification‑based controls

Experience in vulnerability management, configuration assessment, and threat analysis

Familiarity with adversary tactics, indicators of compromise, and emerging cyber threat research

Background with automation, patch management, secure configuration, and applying security standards across many platforms

Experience designing cloud‑native architectures and security patterns for large enterprises

Strong understanding of networking infrastructure, firewalls, anti‑malware, and endpoint security

Experience building security architectures aligned to enterprise frameworks (NIST CSF, CSA, ISO27001, etc.)

Benefits

Medical

Dental

Vision healthcare

Other insurance benefits (for employee and family)

Retirement benefits, including 401(k)

Paid holidays

Vacation

Compassionate and sick days

Company

Merck

Glassdoor4.1

Merck is a biopharmaceutical company that offers medicines and vaccines for various diseases.

Founded in 1891

Rahway, New Jersey, USA

10001+ employees

http://www.merck.com

Funding

Current Stage

Public Company

Total Funding

$5.59M

Key Investors

Private Capital AdvisorsGavi, the Vaccine Alliance

2018-11-25Post Ipo Equity· $0.59M

2016-01-21Series Unknown· $5M

1980-12-19IPO

Leadership Team

Betty Larson

Executive Vice President and Chief Human Resources Officer

Dean Li

Executive Vice President and President, Merck Research Laboratories

Recent News

FiercePharma

CEPI bankrolls $30M Ebola vaccine collaboration with Merck, SK Bioscience and others

2026-01-23

Tokenist

Why Is Moderna (MRNA) Stock Up Today: Merck Partnered Vaccine Cuts Recurrence Risk

2026-01-23

Pharma Letter

SK bioscience advancing Zaire ebolavirus vaccine in CEPI and Merck & Co collab

2026-01-23

Company data provided by crunchbase