Cloud Security Engineer-1

Job Description

The Associate Director, Product Security Platform Engineering, plays a critical role in integrating security controls across cloud environments, application developer ecosystems, and corporate infrastructure, ensuring scalable, resilient, secure-by-design architectures.

This leader will partner closely with Cloud, DevOps, Global Technology, IT Risk Management & Security, and global engineering teams to strengthen our security posture across multi-cloud and hybrid enterprise environments.

Key Responsibilities

Platform Engineering & Cloud Security Leadership

• Lead the design, engineering, and scaling of enterprise product security platforms.
• Ensure cloud-native security patterns are deeply integrated across AWS, Azure, etc environments.
• Conduct technology research to evaluate emerging threats, vulnerabilities, and cloud provider risks.
• Establish and maintain secure architecture standards, configuration baselines, and best practices for cloud and product security platforms.
• Drive modernization and automation of security workflows with a DevSecOps mindset.

Security Architecture, Governance & Strategy

• Translate enterprise security strategy and policy into actionable architecture, platform capabilities, and engineering implementations.
• Define security requirements and enable collaborative development of scalable system and service architectures.
• Collaborate on cloud security governance, data protection strategy, and secure adoption frameworks.
• Guide platform teams and developers to close gaps in cloud posture, application security, and data protection maturity.

Risk Management, Assessments & Compliance

• Perform Security Assessments using frameworks such as CSA, NIST, PCI, and internal controls.
• Ensure compliance with enterprise risk standards, policies, regulatory expectations, and audit requirements.
• Review cloud services and recommend secure implementation patterns with appropriate monitoring and guardrails.
• Conduct investigative research and analysis of complex security issues, including threat modeling and vulnerability analysis.

Technical Engineering & Automation

• Write code, scripts, and automation to enhance security tooling, dashboards, integrations, and workflows.
• Develop new tools and technologies for Cloud Security and platform security engineering.
• Tune and enhance existing Information Security tools, platforms, and detection engines.

Cross-Functional Collaboration & Leadership

• Serve as a technical leader on cloud and cybersecurity matters for engineering, cloud COE, and DevOps teams.
• Act as a consultant to product teams to ensure new products and cloud services are deployed securely.
• Participate in enterprise architecture forums and influence long-term cloud and security architecture direction.
• Engage non-technical stakeholders effectively, translating technical risks into business-aligned decisions.
• Mentor team members and serve as an escalation point on complex or unusual issues.

Qualifications

Education

• Bachelor's degree in computer science, Engineering, Information Systems Security, or equivalent professional experience.

Required Experience & Skills

• 8+ years in Information Security, Cybersecurity, or IT roles with increasing complexity and accountability.
• Experience integrating security into CI/CD pipelines and cloud environments.
• Strong business acumen in risk management, operations, and emerging technology trends.

Preferred Experience & Skills

• Extensive security engineering experience across IaaS, PaaS, and SaaS environments.
• Knowledge of data protection for structured and unstructured data using classification-based controls.
• Experience in vulnerability management, configuration assessment, and threat analysis.
• Familiarity with adversary tactics, indicators of compromise, and emerging cyber threat research.
• Background with automation, patch management, secure configuration, and applying security standards across many platforms.
• Experience designing cloud-native architectures and security patterns for large enterprises.
• Strong understanding of networking infrastructure, firewalls, anti-malware, and endpoint security.
• Experience building security architectures aligned to enterprise frameworks (NIST CSF, CSA, ISO27001, etc.).

Required Skills:
Accountability, Accountability, Amazon Web Services (AWS), Application Security, Business Acumen, Business Management, Cloud Computing, Cloud Security, Cybersecurity, Cybersecurity Operations, Data Protection, Delivery of Security Applications, Design Applications, DevOps Coaching, Emerging Technologies, Firewall Security, Influence, Information Security, Information Technology (IT) Risk Management, Investigative Research, Platform as a Service (PaaS), Security Architecture Design, Security Governance, SLA Management, System Designs {+ 3 more}

Preferred Skills:

Current Employees apply HERE

Current Contingent Workers apply HERE

US and Puerto Rico Residents Only:

Our company is committed to inclusion, ensuring that candidates can engage in a hiring process that exhibits their true capabilities. Please click here if you need an accommodation during the application or hiring process.

As an Equal Employment Opportunity Employer, we provide equal opportunities to all employees and applicants for employment and prohibit discrimination on the basis of race, color, age, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or other applicable legally protected characteristics. As a federal contractor, we comply with all affirmative action requirements for protected veterans and individuals with disabilities. For more information about personal rights under the U.S. Equal Opportunity Employment laws, visit:

EEOC Know Your Rights

EEOC GINA Supplement

We are proud to be a company that embraces the value of bringing together, talented, and committed people with diverse experiences, perspectives, skills and backgrounds. The fastest way to breakthrough innovation is when people with diverse ideas, broad experiences, backgrounds, and skills come together in an inclusive environment. We encourage our colleagues to respectfully challenge one another's thinking and approach problems collectively.

Learn more about your rights, including under California, Colorado and other US State Acts

U.S. Hybrid Work Model

Effective September 5, 2023, employees in office-based positions in the U.S. will be working a Hybrid work consisting of three total days on-site per week, Monday - Thursday, although the specific days may vary by site or organization, with Friday designated as a remote-working day, unless business critical tasks require an on-site presence.This Hybrid work model does not apply to, and daily in-person attendance is required for, field-based positions; facility-based, manufacturing-based, or research-based positions where the work to be performed is located at a Company site; positions covered by a collective-bargaining agreement (unless the agreement provides for hybrid work); or any other position for which the Company has determined the job requirements cannot be reasonably met working remotely. Please note, this Hybrid work model guidance also does not apply to roles that have been designated as "remote".

The salary range for this role is
$142,400.00 - $224,100.00

This is the lowest to highest salary we in good faith believe we would pay for this role at the time of this posting. An employee's position within the salary range will be based on several factors including, but not limited to relevant education, qualifications, certifications, experience, skills, geographic location, government requirements, and business or organizational needs.

The successful candidate will be eligible for annual bonus and long-term incentive, if applicable.

We offer a comprehensive package of benefits. Available benefits include medical, dental, vision healthcare and other insurance benefits (for employee and family), retirement benefits, including 401(k), paid holidays, vacation, and compassionate and sick days. More information about benefits is available at ;br>
You can apply for this role through (or via the Workday Jobs Hub if you are a current employee). The application deadline for this position is stated on this posting.

San Francisco Residents Only: We will consider qualified applicants with arrest and conviction records for employment in compliance with the San Francisco Fair Chance Ordinance

Los Angeles Residents Only: We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance

Search Firm Representatives Please Read Carefully
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails.

Employee Status:
Regular

Relocation:
No relocation

VISA Sponsorship:
No

Travel Requirements:
10%

Flexible Work Arrangements:
Hybrid

Shift:
Not Indicated

Valid Driving License:
No

Hazardous Material(s):
N/A

Job Posting End Date:
02/7/2026
*A job posting is effective until 11:59:59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date.