Cloud Security Engineer (DevSecOps)

We Are Teva

We’re Teva, a leading innovative biopharmaceutical company, enabled by a world-class generics business. Whether it’s innovating in the fields of neuroscience and immunology or delivering high-quality medicine worldwide, we’re dedicated to addressing patients’ needs now and in the future. Here, you will be part of a high-performing, inclusive culture that values fresh thinking and collaboration. You'll have the room to grow, the flexibility to balance life with work, and the opportunity to better health worldwide, together.

Our Team, Your Impact

We are looking for an experienced and highly skilled Cloud Security Engineer to design, implement, and operate security solutions across Teva’s cloud environments, including AI‑enabled platforms and services.

In this role, you will own cloud and AI security initiatives, drive automation, and ensure continuous compliance and risk‑based governance across Azure and multi‑cloud platforms. You will work closely with DevOps, SOC, engineering, application security, and risk stakeholders to strengthen the organization’s security posture while enabling secure, compliant, and responsible adoption of cloud and AI technologies.

How You’ll Spend Your Day

Cloud Security Architecture & Implementation

Design, implement, and maintain cloud-native and third-party security solutions across Azure and additional cloud platforms

Enforce secure-by-design principles across cloud infrastructure and applications

Design and implement container and Kubernetes security controls across build and runtime environments

Implement workload protection, vulnerability management, and runtime security for cloud-native applications and containers

Security Operations & Incident Response

Monitor, investigate, and respond to cloud security incidents in collaboration with the SOC and security teams

Support incident triage, root cause analysis, and remediation activities

Integrate security findings into operational workflows

Analyze cloud, container, and application security events and coordinate remediation efforts with engineering teams

Automation & DevSecOps

Develop and maintain automation scripts and tooling (PowerShell, Azure CLI, Python, REST APIs, Microsoft Graph)

Build automated compliance and security reporting solutions

Integrate security controls into CI/CD pipelines and Infrastructure-as-Code (Terraform, Ansible, Azure DevOps, GitHub)

Implement and maintain DevSecOps and SSDLC practices across development pipelines

Integrate SAST, SCA, container image scanning, and secrets scanning into CI/CD workflows

Manage and optimize application security tools

Automate vulnerability detection and remediation workflows for application dependencies, container images, and Infrastructure-as-Code

Application Security & SSDLC

Embed application security controls throughout the Secure Software Development Lifecycle (SSDLC)

Perform application dependency and open-source library risk assessments

Define and enforce secure coding and vulnerability management standards

Support developers in remediation of application, container, and dependency vulnerabilities

Collaborate with development teams to improve application and API security posture

Validate security of container images, Kubernetes manifests, and software supply chain components

Cloud Security Governance & Compliance

Conduct security assessments, audits, and continuous compliance monitoring across cloud environments

Ensure adherence to regulatory frameworks (e.g., GDPR, HIPAA, ISO 27001, GxP)

Define and enforce security policies (IAM, network controls, diagnostics, logging, data protection)

Support governance initiatives related to software supply chain security and third-party/open-source risk management

AI & Generative AI Security

Understanding of security risks in AI/ML and Generative AI systems (e.g., data leakage, model misuse, prompt injection)

Experience securing AI-enabled cloud services (e.g., Azure AI / Azure OpenAI), including identity, access, and data protection

Ability to integrate AI security and governance controls into DevSecOps pipelines and SSDLC processes

Familiarity with AI risk, compliance, and governance considerations across the model lifecycle

Collaboration & Enablement

Partner with CISO and global security teams to align with enterprise standards and strategy

Work closely with development, platform, and infrastructure teams to embed security into the SDLC

Provide technical guidance, best practices, and mentorship to engineering and development teams

Collaborate with vendors and partners to evaluate and implement security solutions

Promote security awareness and secure development best practices across engineering teams

Your Skills And Experience

• Bachelor’s degree in Computer Science, Information Security, or a related field (preferred)
• 3+ years of experience in Cloud Security / DevSecOps roles
• Strong hands-on experience with Microsoft Azure (mandatory)
• Proven experience designing and operating cloud security controls, including:
• IAM & RBAC
• Network security (NSGs, Firewalls, WAF, ZTNA)
• Enforcement policies
• Data protection, encryption, and secrets management
• Endpoint and workload protection
• Container and Kubernetes security
• Experience with cloud security platforms (CNAPP/CSPM)
• Experience implementing SSDLC and DevSecOps practices
• Hands-on experience with application security tooling such as:
• Container image scanning tools
• SAST/SCA solutions
• Strong scripting and automation skills:
• PowerShell (advanced)
• Azure CLI
• Python
• REST APIs (including Microsoft Graph)
• Experience with Infrastructure as Code (IaC) and CI/CD tools (Terraform, Ansible, Azure DevOps, GitHub)
• Familiarity with SIEM and security monitoring tools
• Solid understanding of cloud architecture, networking, container technologies, and secure application development
• Experience securing software supply chains, container registries, and open-source dependencies
  

Also Good to Have

• Azure Certifications: AZ-900, AZ-104/AZ-204, AZ-500 (mandatory), AZ-305 (advantage)
• Additional security certifications such as CISSP, CISM, CCSP, or Kubernetes security certifications (CKS)
• Experience with AWS and/or GCP environments
• Familiarity with Azure Arc and hybrid cloud scenarios
• Experience in regulated industries (Pharmaceuticals/Manufacturing)
• Experience with Kubernetes, Docker, and container orchestration security
• Familiarity with OWASP Top 10, OWASP ASVS, and software supply chain security frameworks
  
  

How We’ll Take Care Of You

At Teva, better health starts from within, and that includes you. From day one, you’ll be supported with benefits designed to help you thrive in and out of work. This includes generous annual leave, reward plans, flexible working schedules (dependent on role), access to tailored health support, and meaningful ways to give back to the community.  When it comes to your career, you’ll be encouraged to explore, evolve, and shape your path. Twist, our one-stop shop for career development platform, gives you access to a wide range of possibilities, from learning programs and short-term projects to opportunities for internal growth. Here, you’ll be part of a culture that empowers you to reach your goals and prioritize your wellbeing every step of the way. 

Already Working @Teva?

Make sure to apply through our internal career site on Twist—your one-stop shop for career development

Teva’s Equal Employment Opportunity Commitment

Teva Pharmaceuticals is committed to equal opportunity in employment. It is Teva's global policy that equal employment opportunity be provided without regard to age, race, creed, color, religion, sex, disability, pregnancy, medical condition, sexual orientation, gender identity or expression, ancestry, veteran status, national or ethnic origin or any other legally recognized status entitled to protection under applicable laws. We are committed to a diverse and inclusive workplace for all. If you are contacted for a job opportunity, please advise us of any accommodations needed to support you throughout the recruitment and selection process. All accommodation information provided will be treated as confidential and used only for the purpose of providing an accessible candidate experience.