Job Specifications
Be part of something bigger at Minaris Advanced Therapies--where every role contributes to creating hope for patients around the world. As a global leader in cell and gene therapy development, manufacturing, and testing, we turn breakthrough science into real-world treatments that change lives. Our team of over 1,000 experts across North America, Europe, and Asia has helped bring transformative therapies to market.
At Minaris, you'll join a purpose-driven community focused on innovation, collaboration, and patient impact. Whether you're in the lab, in the cleanroom, or behind the scenes, your work will directly support life-saving therapies and make a lasting difference. If you're passionate about advancing cutting-edge science and believe in the potential of cell and gene therapies, we invite you to help shape the future of medicine--one patient at a time.
Position Summary
The Information Security Engineer is responsible for maintaining the security and integrity of Minaris Advanced Therapies data. The Security Engineer must have knowledge of every aspect of information security systems within the company. Their two main functions are to plan, procure, build, test and deploy, and maintain security technology and after implementation, to perform continuous improvement on said systems to improve their performance. The Security Engineer plays a critical role in maintaining and administering the security of a diverse IT environment, which includes desktop services, on-site servers and applications, cloud hosted solutions and mobile solutions.
Essential Functions And Responsibilities
Establishing and constructing security standards and best practices that an organization should follow.
Implementing security controls to protect an organization's infrastructure, computer system, digital files, and protect sensitive information.
Organizing and conducting scans and testing to identify vulnerabilities
Evaluate potential security threats and vulnerabilities and recommend ways to mitigate them.
Reporting results of scanning or testing and providing security recommendations for further system security enhancement directly to the management
Preparing and documenting standard operating procedures and protocols
Ensure compliance with industry and government regulations related to IT security.
Ensuring that the organization is aware of security incidents as much as possible, as quickly as possible.
Experience in evaluating, implementing, and managing external SIEM vendors
Conducting penetration testing by simulating an attack on the system to find exploitable weaknesses
Monitoring networks and systems for security breaches, using software that detect intrusions and abnormal system behavior.
Provide incident response responding to any security breaches or intrusions that may occur.
Keep updated on the latest intelligence, including hackers' methodologies, to anticipate security breaches.
Educating the workforce on information security standards, policies, and best practices
Develop reports to share with administrators about the efficiency of security policies and recommend any changes.
Develop and maintain security program metrics to measure program effectiveness.
Monitor industry trends for changes in physical and cyber security challenges and implement planning, policy, and procedure changes in response.
Knowledge, Skills & Ability
Must be able to work in an office environment with minimal noise conditions.
Must be able to work in environment with variable noise levels.
Ability to stand /Sit/walk for extended periods of time.
Ability to crouch, bend, twist, and reach.
Clarity of Vision with ability to identify and distinguish colors.
Must be able to perform activities with repetitive motions.
Education & Experience
Degree in Cyber Security, Management Information Systems, or equivalent work experience
Minimum 3 years prior proven work experience in a Cyber Security, Risk Management, or Audit role
Knowledge of risk assessment tools, technologies, and methods.
Experience in the security of LAN/WAN (MPLS, IPSEC), IIS, wireless network, cloud, systems, application architectures, and mobile security.
Proficient in security technologies such as Firewalls, VPNs, IDS/IPS, and endpoint protection.
Proficient in security technologies such as Disk Encryption, Data Masking, etc.
Experience in disaster recovery, computer forensic tools, technologies, and methods.
Exceptional understanding of ethical hacking and intrusion detection.
Knowledge of regulatory requirements and compliance issues affecting IT Security.
Professional certification such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) is a plus.
Knowledge of ITIL and/or ISO/IEC 27001 standards.
Ability to independently manage large projects with multiple stakeholders.
Independent driver of self-development and continuous learning
Team-oriented and skilled in working within a collaborative environment.
Stron
About the Company
Minaris Advanced Therapies is a global contract development and manufacturing organization (CDMO) and contract testing provider focused exclusively on cell and gene therapies. Minaris Advanced Therapies is headquartered in Philadelphia, Pennsylvania, and has more than 650,000 square feet of infrastructure across the United States, Europe and Asia. We have manufactured and released over 7,500 GMP batches and our global network supports therapy developers through early-stage development, clinical trials and commercial manufact...
Know more