Cybersecurity Analyst

At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections, where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters.

The Position

A healthier future. It's what drives us to innovate. To continuously advance science and ensure everyone has access to the healthcare they need today and for generations to come. Creating a world where we all have more time with the people we love.

That's what makes us Roche.

As a Cybersecurity Associate/Analyst (Penetration Tester), you'll be a key part of our security team. You'll be responsible for conducting comprehensive internal security assessments, identifying vulnerabilities, and recommending remediation measures to protect our organization's digital assets. Your work will directly help us maintain a robust security posture, ensuring the integrity and confidentiality of our data in a global healthcare environment.

The Opportunity

• Perform penetration testing on web applications, networks, and systems to identify security vulnerabilities and weaknesses using both manual and automated tools.
• Conduct in-depth analysis of security findings, prioritize risks, and provide detailed recommendations for remediation.
• Develop and execute penetration testing plans, methodologies, and tools in accordance with industry best practices and standards.
• Collaborate with cross-functional teams to implement security controls, mitigate risks, and enhance the overall security posture.
• Document and report security assessment findings, including vulnerabilities, exploitation techniques, and recommended countermeasures.
• Stay abreast of emerging threats, vulnerabilities, and security trends to proactively identify and address potential risks.
• Provide technical expertise and guidance to support incident response activities and security awareness training programs.
• Participate in security monitoring for existing and emerging vulnerabilities in a global environment.

Who You Are

• You hold a Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, or at least 1 to 2 years of equivalent work experience.
• You have a certificate in eCPPT or OSCP. Having a CISSP certification is an advantage, or other relevant certifications (preferred).
• You have proven experience in performing penetration testing and vulnerability assessments across a variety of platforms, operating systems, web application frameworks, networks, and cloud environments. Mobile app experience is a plus.
• You are proficient in using penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali Linux.
• You have a strong understanding of common security vulnerabilities and attack vectors, as well as mitigation strategies and best practices.
• You are proficient with scripting or programming languages such as Python, PowerShell/C#, Bash, and Java. Familiarity with assembly is a plus.
• You possess knowledge of and have demonstrated the ability to work within security frameworks and methodologies, such as MITRE ATT&CK, OWASP, and NIST.
• You possess effective writing and communication skills, with the ability to clearly articulate technical findings and recommendations to both technical and non-technical stakeholders.

Who we are

A healthier future drives us to innovate. Together, more than 100'000 employees across the globe are dedicated to advance science, ensuring everyone has access to healthcare today and for generations to come. Our efforts result in more than 26 million people treated with our medicines and over 30 billion tests conducted using our Diagnostics products. We empower each other to explore new possibilities, foster creativity, and keep our ambitions high, so we can deliver life-changing healthcare solutions that make a global impact.

Let's build a healthier future, together.

Roche is an Equal Opportunity Employer.