Cloud Security Engineer (DevSecOps)
Posted on Jul 1, 2026
## We Are Teva We’re Teva, a leading innovative biopharmaceutical company, enabled by a world-class generics business. Whether it’s innovating in the fields of neuroscience and immunology or delivering high-quality medicine worldwide, we’re dedicated to addressing patients’ needs now and in the future. Here, you will be part of a high-performing, inclusive culture that values fresh thinking and collaboration. You'll have the room to grow, the flexibility to balance life with work, and the opportunity to better health worldwide, together. ## Our Team, Your Impact We are looking for an experienced and highly skilled Cloud Security Engineer to design, implement, and operate security solutions across Teva’s cloud environments, including AI‑enabled platforms and services. In this role, you will own cloud and AI security initiatives, drive automation, and ensure continuous compliance and risk‑based governance across Azure and multi‑cloud platforms. You will work closely with DevOps, SOC, engineering, application security, and risk stakeholders to strengthen the organization’s security posture while enabling secure, compliant, and responsible adoption of cloud and AI technologies. ## How You’ll Spend Your Day Cloud Security Architecture & Implementation Design, implement, and maintain cloud-native and third-party security solutions across Azure and additional cloud platforms Enforce secure-by-design principles across cloud infrastructure and applications Design and implement container and Kubernetes security controls across build and runtime environments Implement workload protection, vulnerability management, and runtime security for cloud-native applications and containers Security Operations & Incident Response Monitor, investigate, and respond to cloud security incidents in collaboration with the SOC and security teams Support incident triage, root cause analysis, and remediation activities Integrate security findings into operational workflows Analyze cloud, container, and application security events and coordinate remediation efforts with engineering teams Automation & DevSecOps Develop and maintain automation scripts and tooling (PowerShell, Azure CLI, Python, REST APIs, Microsoft Graph) Build automated compliance and security reporting solutions Integrate security controls into CI/CD pipelines and Infrastructure-as-Code (Terraform, Ansible, Azure DevOps, GitHub) Implement and maintain DevSecOps and SSDLC practices across development pipelines Integrate SAST, SCA, container image scanning, and secrets scanning into CI/CD workflows Manage and optimize application security tools Automate vulnerability detection and remediation workflows for application dependencies, container images, and Infrastructure-as-Code Application Security & SSDLC Embed application security controls throughout the Secure Software Development Lifecycle (SSDLC) Perform application dependency and open-source library risk assessments Define and enforce secure coding and vulnerability management standards Support developers in remediation of application, container, and dependency vulnerabilities Collaborate with development teams to improve application and API security posture Validate security of container images, Kubernetes manifests, and software supply chain components Cloud Security Governance & Compliance Conduct security assessments, audits, and continuous compliance monitoring across cloud environments Ensure adherence to regulatory frameworks (e.g., GDPR, HIPAA, ISO 27001, GxP) Define and enforce security policies (IAM, network controls, diagnostics, logging, data protection) Support governance initiatives related to software supply chain security and third-party/open-source risk management AI & Generative AI Security Understanding of security risks in AI/ML and Generative AI systems (e.g., data leakage, model misuse, prompt injection) Experience securing AI-enabled cloud services (e.g., Azure AI / Azure OpenAI), including identity, access, and data protection Ability to integrate AI security and governance controls into DevSecOps pipelines and SSDLC processes Familiarity with AI risk, compliance, and governance considerations across the model lifecycle Collaboration & Enablement Partner with CISO and global security teams to align with enterprise standards and strategy Work closely with development, platform, and infrastructure teams to embed security into the SDLC Provide technical guidance, best practices, and mentorship to engineering and development teams Collaborate with vendors and partners to evaluate and implement security solutions Promote security awareness and secure development best practices across engineering teams ## Your Skills and Experience * Bachelor’s degree in Computer Science, Information Security, or a related field (preferred) * 3+ years of experience in Cloud Security / DevSecOps roles * Strong hands-on experience with Microsoft Azure (mandatory) * Proven experience designing and operating cloud security controls, including: * IAM & RBAC * Network security (NSGs, Firewalls, WAF, ZTNA) * Enforcement policies * Data protection, encryption, and secrets management * Endpoint and workload protection * Container and Kubernetes security * Experience with cloud security platforms (CNAPP/CSPM) * Experience implementing SSDLC and DevSecOps practices * Hands-on experience with application security tooling such as: * Container image scanning tools * SAST/SCA solutions * Strong scripting and automation skills: * PowerShell (advanced) * Azure CLI * Python * REST APIs (including Microsoft Graph) * Experience with Infrastructure as Code (IaC) and CI/CD tools (Terraform, Ansible, Azure DevOps, GitHub) * Familiarity with SIEM and security monitoring tools * Solid understanding of cloud architecture, networking, container technologies, and secure application development * Experience securing software supply chains, container registries, and open-source dependencies ## Also Good to Have * Azure Certifications: AZ-900, AZ-104/AZ-204, AZ-500 (mandatory), AZ-305 (advantage) * Additional security certifications such as CISSP, CISM, CCSP, or Kubernetes security certifications (CKS) * Experience with AWS and/or GCP environments * Familiarity with Azure Arc and hybrid cloud scenarios * Experience in regulated industries (Pharmaceuticals/Manufacturing) * Experience with Kubernetes, Docker, and container orchestration security * Familiarity with OWASP Top 10, OWASP ASVS, and software supply chain security frameworks ## How We’ll Take Care of You At Teva, better health starts from within, and that includes you. From day one, you’ll be supported with benefits designed to help you thrive in and out of work. This includes generous annual leave, reward plans, flexible working schedules (dependent on role), access to tailored health support, and meaningful ways to give back to the community. When it comes to your career, you’ll be encouraged to explore, evolve, and shape your path. Twist, our one-stop shop for career development platform, gives you access to a wide range of possibilities, from learning programs and short-term projects to opportunities for internal growth. Here, you’ll be part of a culture that empowers you to reach your goals and prioritize your wellbeing every step of the way. ## Already Working @Teva? Make sure to apply through our internal career site on Twist—your one-stop shop for career development ## Teva’s Equal Employment Opportunity Commitment Teva Pharmaceuticals is committed to equal opportunity in employment. It is Teva's global policy that equal employment opportunity be provided without regard to age, race, creed, color, religion, sex, disability, pregnancy, medical condition, sexual orientation, gender identity or expression, ancestry, veteran status, national or ethnic origin or any other legally recognized status entitled to protection under applicable laws. We are committed to a diverse and inclusive workplace for all. If you are contacted for a job opportunity, please advise us of any accommodations needed to support you throughout the recruitment and selection process. All accommodation information provided will be treated as confidential and used only for the purpose of providing an accessible candidate experience.