Specialist, Application Security

Job Requirements

SPECIALIST, APPLICATION SECURITY & CLOUD SECURITY

What You Will Do

Cloud Security
- Propose and align with Cloud Security functional leads or manager on objectives and key success factors or results for global or regional initiatives and projects. Take the lead and deliver on objectives.
- Be responsible for evaluating new cloud solutions and developing the supporting security approaches required to incorporate new cloud technologies in a safe and secure manner.
- Participate and contribute to cross functional engagements, achieve risks and compliance objectives. Cross functional teams include:
Ø Cyber Fusion Center in Singapore and/or US

Ø Cybersecurity Engineering, namely

Ø Identity & Access Management

Ø Data, Network

Application Security
- Propose and align with Application Security functional leads or manager on objectives and key success factors or results for global or regional initiatives and projects. Take the lead and deliver on objectives.
- Support the implementation of DevSecOps across regional Application Development teams
- Participate and contribute to cross functional engagements, achieve risks and compliance objectives. Cross functional teams include:
Ø Software or Application Development

Ø Cyber Fusion Center in Singapore and/or US

Ø Cybersecurity Engineering, namely

Ø Identity & Access Management / IAM Governance

Ø Security Data Analytics

Work Experience

Technical Knowledge

Good knowledge and experience with the following concept, methodology, products, platforms, services, and protocols.

Cloud Platforms & Services. E.g., PaaS, IaaS, SaaS, CASB, SASE
Extensive knowledge and experience in Risk Management and Information Security, Identity & Access Management, and Identity Governance & Administration
Dynamic Application Security Testing & Static Application Security Testing. Using tools such as Fortify on Demand, WebInspect,
Software Composition Analysis, Open Source Security. Using tools like Black Duck
Data Encryption & Key Management
API Security

Others

May require occasional off-hours work

What You Must Have

BS in Information Security, Computer Science or Engineering or equivalent experience.
Relevant experience in risk management and security and/or regulated or compliance environment
Ability to connect with stakeholders on processes and information, both in the local region and abroad is essential
Familiarity with Agile methodology, Software Development Lifecycle (SDLC) and IT Information Library (ITIL)
Familiarity with information security program frameworks, including ISO 27001/2, COBIT, NIST and MITRE
Familiarity with laws and regulations, such as PCI-DSS, GDPR, HIPAA, SOX, or GLBA
Excellent oral and written communication skills, possess good presentation skills
Relevant certifications are desired

Who we are

We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world.

What we look for

Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today.

We are proud to be a company that embraces the value of bringing diverse, talented, and committed people together. The fastest way to breakthrough innovation is when diverse ideas come together in an inclusive environment. We encourage our colleagues to respectfully challenge one another’s thinking and approach problems collectively. We are an equal opportunity employer, committed to fostering an inclusive and diverse workplace.

**Requisition ID**: P-100537