Senior Security Engineer / AppSec Engineer

Reference #: JR116661Life changing therapies. Global impact. Bridge to thousands of biopharma companies and their patients.We are PCI.Our investment is in People who make an impact, drive progress and create a better tomorrow. Our strategy includes building teams across our global network to pioneer and shape the future of PCI.Position SummaryThe Senior Security Engineer will serve as the technical security lead for PCI Pharma, responsible for security architecture, application security, vulnerability management, and security engineering across enterprise and manufacturing environments. This role combines hands-on technical work with strategic security advisory, ensuring protection of pharmaceutical intellectual property, patient data, and compliance with industry regulations.Key ResponsibilitiesDesign and implement security architecture for cloud (Azure, AWS), on-premises, and hybrid environmentsLead application security program including SAST/DAST integration, secure code reviews, and developer trainingManage enterprise vulnerability management using Nessus, including scan scheduling, risk prioritization, and remediation trackingArchitect and maintain Zero Trust security framework including identity-centric access controlsConduct security assessments for new applications, infrastructure changes, and M&A integrationsDesign network segmentation strategies for IT/OT environments and manufacturing systemsImplement and manage endpoint security solutions (EDR, AV) in coordination with RUN teamLead security incident response for complex technical investigationsDevelop security standards, policies, and technical guidelines aligned with pharmaceutical regulationsEvaluate and recommend security tools and technologies for continuous improvementCoordinate penetration testing activities and remediation of findingsProvide security consultation for cloud migrations and digital transformation initiativesRequired QualificationsBachelor's degree in Computer Science, Cybersecurity, or related field7+ years of progressive cybersecurity experience with 3+ years in security engineering/architectureDeep expertise in vulnerability management tools (Nessus, Qualys, or Rapid7)Strong application security knowledge including OWASP Top 10, secure SDLC, and DevSecOps practicesExperience with cloud security in Azure and/or AWS (security groups, IAM, encryption)Proficiency in network security including firewalls, IDS/IPS, and segmentationKnowledge of endpoint security solutions and EDR platformsStrong scripting abilities (PowerShell, Python) for security automationExperience in regulated industries with compliance requirementsCISSP, CISM, or equivalent security certificationPreferred QualificationsMaster's degree in Cybersecurity or Information AssurancePharmaceutical or healthcare industry experience with GxP knowledgeGPEN, OSCP, or other hands-on security certificationsExperience with IT/OT security and industrial control systemsKnowledge of 21 CFR Part 11 and computer system validationCloud security certifications (AZ-500, AWS Security Specialty)Technical Skills & ToolsNessus / Tenable.io vulnerability management SAST/DAST tools (SonarQube, Checkmarx, Burp Suite) Azure Security Center / AWS Security Hub EDR platforms (CrowdStrike, Defender for Endpoint) SIEM platforms (Splunk, Sentinel) Firewall management (Palo Alto, Cisco ASA) PowerShell / Python security scripting Git and CI/CD security integrationKey Performance IndicatorsCritical vulnerability remediation SLA (target: 90% within 90 days)Zero Trust implementation milestones (per roadmap)Join us and be part of building the bridge between life changing therapies and patients. Let's talk futureEqual Employment Opportunity (EEO) Statement:PCI Pharma Services is an Equal Opportunity/Affirmative Action Employer. We do not unlawfully discriminate on the basis of race, color, religion, age, sex, creed, nationa origin, ancestry, citizenship status, marital or domestic or civil union status, familial status, affectional or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, or any other protected status.At PCI, Equity and Inclusion are at the core of our company's purpose: Together, delivering life-changing therapies. We are committed to cultivating an inclusive workplace by holding ourselves accountable to the highest standards of understanding, fairness, respect, and equal opportunity - at every level. We envision a PCI community where everyone can belong and grow, and we strive to bring this vision to reality by continuously and intentionally assessing our people practices, policies and programs, marketing approach, and workplace culture.LSNE is an EEO/AA Employer and all qualified applicants will receive consideration for employment without regard to, their race, color, religion, sex, age, national origin, ancestry, sexual orientation, gender identity, disability, protected genetic information, protected veteran status, military service, or other protected status. The Company's EEO policy, as well as its affirmative action obligations, include the full and complete support of The Company.

Created: 2026-01-22