Information Security Engineer

About the role

The Information Security Engineer will design, implement, monitor and manage secure solutions that protect P&G’s digital assets across systems, applications, cloud environments and third‑party integrations. You will work closely with architecture teams to ensure compliance with best practices and regulatory requirements while adapting to evolving threat landscapes.

Key responsibilities

• Develop, deploy and maintain enterprise‑wide security solutions aligned with architectural designs and compliance standards.
• Continuously monitor security controls, assess risks and recommend enhancements to mitigate emerging threats.
• Validate the technical security of B2B initiatives, third‑party relationships, outsourced solutions and vendors.
• Balance cyber‑threat mitigation with business needs, focusing on high‑impact risk areas.
• Drive automation, self‑service improvements and ensure availability, integration and confidentiality of critical systems.

Required profile

• Proven experience in information technology, security administration or security operations.
• Strong analytical and technical expertise in cybersecurity, cloud computing (public, private, hybrid) and DevSecOps.
• Hands‑on scripting experience with Python, Bash or PowerShell.
• Familiarity with API design, integration patterns, storage and database options.
• Knowledge of OWASP, CVSS, MITRE ATT&CK, and the software development lifecycle.
• Experience with agile methodologies such as Scrum or Kanban.
• Relevant certifications (e.g., CCSP, CISSP, TOGAF, AWS, Azure, GCP) are preferred.

Required skills

• Python
• Bash
• PowerShell
• AWS, Azure, GCP
• API design and integration patterns
• Access patterns, storage and database technologies
• OWASP, CVSS, MITRE ATT&CK
• SDLC
• DevSecOps
• Scrum and Kanban