Cyber Security Engineer

Do you want to be part of an inclusive team that works to develop innovative therapies for patients? Every day, we are driven to develop and deliver innovative and effective new medicines to patients and physicians. If you want to be part of this exciting work, you belong to Astellas

Astellas Pharma Inc. is a pharmaceutical company conducting business in more than 70 countries around the world. We are committed to turning innovative science into medical solutions that bring value and hope to patients and their families. Keeping our focus on addressing unmet medical needs and conducting our business with ethics and integrity enables us to improve the health of people throughout the world. For more information on Astellas, please visit our website at .

Astellas' Global Capability Centers Overview
Astellas' Global Capability Centers (GCCs) are strategically located sites that give Astellas the ability to access talent across various functions in the value chain and to co-locate core capabilities that are currently dispersed. Our three GCCs are located in India, Poland, and Mexico. The GCCs will enhance our operational efficiency, resilience, and innovation potential, enabling a timely response to changing business demands. Our GCCs are an integral part of Astellas, guided by our shared values and behaviors, and are critical enablers of the company's strategic priorities, sustainable growth, and commitment to turn innovative science into VALUE for patients.

This position is based in Bangalore, India & will require work from the office at least the minimum number of days per week as agreed by the business leader.

Purpose And Scope
As a Cyber Security Engineer, you will play a critical role in safeguarding our organization's information systems and data. This position has arisen due to Astellas insourcing the responsibility for managing security operations, developing automation for threat detection, and working towards 'best in industry' incident response. The successful candidate will work collaboratively within the Security Operations Center (SOC) and other Value Teams across the organization to ensure a proactive security posture and to mitigate risks associated with cyber threats in several areas.

Astellas has several roles that may fit candidates who do not have experience in all the areas outlined in the next section, therefore we encourage applicants who have experience in two or more areas listed below.

Responsibilities
Security Operations Center (SOC) Management:

• Support daily SOC operations, ensuring effective monitoring support, development of use cases and response to security incidents.
• Manage application ingestion processes and email security protocols.
• Support SIEM management, including logging and alerting.

Automation Development

• Develop and implement automation solutions for alerts from various security sources, ensure firewalls, IDS and EDR tools are working effectively.
• Streamline processes to enhance the efficiency of security operations and help develop communication with other teams.

Threat Modelling

• Conduct threat modelling for applications to identify vulnerabilities and recommend mitigation strategies.
• Analyze email tickets and develop tooling to improve response times and effectiveness.
• Provide root cause analysis for the threat found and assist with remediation.

Anti-Malware And Endpoint Detection

• Assist in operational efforts to implement a global strategy for anti-virus (AV) solutions and optimize detection capabilities.
• Ensure consistent standards for endpoint detection and response across the organization.

Incident Response

• Lead or support incident response efforts using an industry-recognized model and report escalations to senior leadership when required.
• Collaborate with Red, Blue, and Purple teams to conduct penetration testing and improve security posture.
• Conduct forensic analysis to investigate security incidents and recommend improvements.

Proactive Threat Hunting

• Engage in proactive threat hunting to identify potential security threats before they materialize.
• Collaborate with teams to enhance detection and response capabilities.

Reporting And Data Analysis

• Engage in proactive collaboration across Value Teams, working with an agile mindset, and assist in the creation of dashboards and reporting for security governance.
• Assist in the governance of security within cloud infrastructure.

Required

• Bachelor's degree in Computer Science, Information Technology, Cyber Security, or a related field.
• Proven experience in a cybersecurity role, preferably within a SOC/SIEM/SOAR environment.
• Experience in using Microsoft Sentinel & Defender / Crowdstrike EDR / Wizz Cloud Security.
• Strong knowledge of security frameworks, threat modelling, and incident response methodologies.
• Awareness of infrastructure and network security features like firewall rules, event IDs, logging/detection, and managing assets in manufacturing / OT environments.
• Experience of working with cloud security and insourced capabilities, as well as MSPs.
• Experience with SIEM/Cloud security tools and automation technologies.Familiarity with anti-malware solutions and endpoint detection strategies.Proficiency in scripting languages for automation (e.g., Python, PowerShell) is an advantage.
• Experience in digital forensics (log analysis and technical root cause assessment).

Preferred

• Security certification is an advantage.
• Demonstrate knowledge of change management principles. Relevant certifications (e.g., Certified Information Systems Security Professional CISSP, Certified Ethical Hacker CEH or CompTIA Security+, etc.)Excellent analytical and problem-solving skills.
• Strong communication skills and the ability to work collaboratively in a small team environment where we share capacity and effort.
• International/global experience is an advantage.

Category TechX

Astellas is committed to equality of opportunity in all aspects of employment.

EOE including Disability/Protected Veterans