Senior Specialist, Technical Support

Merck Merck · Pharma · Telangana, India

Senior Specialist in Security Operations at Merck, focusing on Secure SDLC, compliance, and IT security platforms within a global healthcare biopharma company. Responsibilities include defining and improving security standards, integrating security into the development lifecycle, performing design reviews, and acting as a security advisor.

What you'd actually do

  1. Define, implement, and continuously improve Secure SDLC standards, controls, and guardrails
  2. Ensure security requirements are integrated into: Requirements & design, Development & build, Testing & validation, Deployment & operations
  3. Maintain alignment with internal security policies, risk frameworks, and regulatory obligations
  4. Perform application and system security design reviews
  5. Document risks and track remediation through the development lifecycle

Skills

Required

  • Secure SDLC principles
  • ITIL Framework
  • AGILE Framework
  • ITSM and project management tools (SNOW and JIRA)
  • basic information security principles
  • risk assessment and mitigation frameworks
  • translate security requirements
  • cloud capabilities/concepts including federation, RBAC and cloud security, Directory Synchronization (AAD Connect), Microsoft O365 and Azure AD
  • identity best practices, Azure roles, security, and SAAS strategies specifically around Microsoft Active Directory\Entra ID
  • Least privileged access concepts

Nice to have

  • Jira/Service Now/Confluence related certifications
  • Experience in large, regulated environments (pharma, finance, manufacturing)
  • Exposure to Security Operations/SOC collaboration, threat intel workflows, or cloud-security initiatives

What the JD emphasized

  • regulatory obligations
  • applicable regulations
  • regulated environments