Career Category

Job Description

HOW MIGHT YOU DEFY IMAGINATION?

THE AMGEN CAPABILITY CENTER IN LISBON, PORTUGAL (ACCP) will be home to over 300 multi-national and multi-cultural employees, representing a broad range of cross functional capabilities, including Commercial, General and Administrative, Research and Development and more. The ACCP will offer rich career growth and development opportunities, regional and global exposure and the opportunity to LIVE, WIN and THRIVE in one of Europe?s most attractive cities.
If you feel like you?re part of something bigger, it?s because you are. At Amgen our shared mission?to serve patients?drives all that we do. It is key to our becoming one of the world?s leading biotechnology companies. We are global collaborators who achieve together?researching, manufacturing and delivering ever-better products that reach over 10 million patients worldwide. It?s time for a career you can be proud of. Join us as:
Sr. Associate, Information Security Risk Analyst (multiple positions)
LIVE
What you will do
The Information Security Risk Analyst is a role inside the Global Information Protection Organization?s Governance, Risk and Compliance (GRC) team. This Senior Associate will interface with cross-functional team members at Amgen to conduct application and third-party information security assessments. The Risk Analyst supports the risk identification and management process across all aspects of Information Technology and is responsible for engaging and leading discussions with internal and external stakeholders to identify, analyze, document and communicate information and related risk to stakeholders.
At Amgen, the role of Information Risk organization is to execute appropriate risk assessment, management and monitoring activities through systems life cycle and throughout a third party?s engagement. We expect our analysts to understand and leverage NIST guidelines to establish accountability and responsibility for controls within our information systems. Ideal candidate should also know to utilize Risk Management Framework (RMF) which provides a cybersecurity roadmap that enables near real-time risk management on information systems with a decision tree supporting privacy and security.
Let?s do this. Let?s change the world. In this vital role you will:

• Interact daily with cross-functional stakeholders to understand information system scope, including business criticality, integrations with other systems, applicable regulations, data flows and controls
• Maintain knowledge of emerging technological trends and related risks
• Generate innovative ideas and challenge the status quo in order to provide recommendations to the business
• Effectively identify, communicate and coordinate the implementation of security controls
• Leveraging your knowledge of industry standard frameworks (i.e., ISO2700x, NIST 800-53, NIST 800-37, NIST 800-161, NIST CSF, etc.) to evaluate security control implementation and effectiveness
• Partner with business units and clearly document and effectively communicate risk assessment results and risk mitigation actions necessary to address risks
• Identify risks which might occur for information systems
• Identify vulnerabilities or weaknesses in systems
• Examine compliance with security requirements
• Create and Maintain detailed risk assessment records for all related activities
  

WIN
What we expect of you
We are all different, yet we all use our unique contributions to serve patients. The professional we seek is a self-motivated and detail-oriented person with these qualifications:

• Bachelor?s degree and 5 or more years? experience in Information Systems or Computer Science
• Ability to understand and decompose large, complex systems and processes
• 3 ? 5 years applied Business Analyst experience in a highly regulated organization
• Advanced Security industry certifications (i.e., CISSP, CRISC, Security +, etc.)
• Strong communication and organizational skills
• 3 ? 5 years applied technical knowledge and understanding of security frameworks (i.e., NIST, ISO 27xxx, etc.)
• Analytical ability to focus on specific details or subsystems, their vulnerabilities and linkages
• An inquisitive, or problem-solving mindset
• Exceptional ability to apply critical thinking to complex risk management scenarios
• Project Management experience
• Ability to independently manage priorities and meet deadlines in a fast-paced, virtual team environment
  

THRIVE
What can you expect of us
As we work to develop treatments that take care of others, so we work to care for our teammates? professional and personal growth and well-being.

• Vast opportunities to learn, develop, and move up and across our global organization.
• Diverse and inclusive community of belonging, where colleagues are empowered to bring ideas to the table, take risks, and act.
• Generous Amgen Total Rewards Plan comprising healthcare, finance, wealth and career benefits.
• Flexible work arrangements.
  

APPLY NOW
FOR A CAREER THAT DEFIES IMAGINATION
In our quest to serve patients above all else, Amgen is the first to imagine, and the last to doubt. Join us.
CAREERS.AMGEN.COM
EQUAL OPPORTUNITY STATEMENT
Amgen is an Equal Opportunity employer and will consider you without regard to your race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.
We will ensure that individuals with disabilities are provided a reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation

.