ActiveJobs

Technical Leader - Digital Health Platform, Secure Cloud

Roche · 2 Locations

Full-timeOn-sitePosted 23 June 2026
Apply on Company Site →

Job description

At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections, where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters. The PositionTechnical Leader - Digital Health Platform, Secure Cloud Roche Digital Technology (RDT) is where innovation meets purpose. As a global team at the heart of Roche, we are a community of business-minded technologists committed to help shape tomorrow’s digital future of healthcare. Our mission is to power Roche through cutting-edge digital technologies, harnessing the potential of artificial intelligence, data, and scalable tech innovations. Driven by purpose and passion, we’re building a future where digital is a core strength across all of Roche, enabling smarter ways of working, unlocking human potential, and driving breakthroughs that truly matter for millions of patients around the world. At Roche, we offer a hybrid work model that combines flexibility with in-person collaboration. For now, we require our employees to be in our offices on average two days per week. The specific office days may vary depending on business needs, such as workshops, conferences, town halls, team meetings, and other collaborative events. Roche’s expanding digital product portfolio demonstrates its commitment to provide healthcare professionals, laboratories, and patients with digital and digitally-enabled solutions that transform patient care. The existing product portfolio includes decision support systems, data management solutions, and workflow solutions. At the center of these diverse types of solutions is always patient data security and privacy as the highest priority for Roche. In this context, Roche has built a global team that builds, secures, and operates infrastructure platforms (cloud and on-prem) for its digital products. This team is working with a high freedom to operate in a self-organized setup and is responsible for tackling the cybersecurity, compliance, and infrastructure challenges of the healthcare industry while enabling high-velocity product development. The opportunity: The Technical Leader will join the Secure Account Management (SAM) team — responsible for cloud infrastructure, account provisioning, security, and governance across Roche's digital product portfolio. The team manages 650+ AWS accounts and enables application teams to build and operate healthcare solutions by providing secure, standardised infrastructure while maintaining development and deployment autonomy. You will own the technical direction and architecture decisions for SAM's cloud platform. This means designing the systems that provision, secures, and governs hundreds of AWS accounts globally — and ensuring the engineering team builds them to a high standard. Your domain is the *how*: architecture, implementation quality, technical standards, and engineering growth. What you will do: Own technical architecture and design decisions for SAM — landing zone design, account vending, IAM governance, and identity management (AWS Identity Center). Translate the Security Architect's guardrail requirements and security standards into implementable engineering work — Terraform modules, automation pipelines, and detection/remediation patterns. Design for platform consumers, not just infrastructure: build reusable, self-service modules and APIs that over 200+ product teams can adopt without needing to contact SAM for every change. Drive automation-first engineering: replace manual, ticket-driven workflows with programmatic access, IaC-managed configuration, and self-service tooling. Set and enforce technical standards: code review expectations, Terraform module structure, CI/CD pipeline design, testing practices, and documentation-as-code. Lead incident response for platform-level issues: coordinate resolution, run post-incident reviews, and drive reliability improvements into the engineering backlog. Mentor and grow engineers: conduct design reviews, pair on complex problems, provide constructive PR feedback, and create an environment where the team's technical capability improves over time. Evaluate and introduce new technologies, patterns, and AWS services Who you are: Total minimum 8 years of experience in IT split between: Technical Experience, minimum 4 years Experience with architecture, software development or operations of internet-scale SaaS products. Previously worked as DevOps engineer, Cloud Engineer, System Reliability Engineer, Technical Leader, or an Architect. Very good understanding and hands-on working experience in AWS. Experience in cloud security services. Experience with AWS cloud infrastructure with medium to large global enterprises with global geographical topologies. Understanding and hands on working knowledge of the following technologies AWS cloud services (AWS IAM, AWS Organisation, AWS Identity Center), GitLab, Pipelines, Terraform. Infrastructure-as-Code and related tools (Terraform / Terragrunt / GitLab pipelines, GitHub actions). Knowledgeable in DevSecOps and integrating security into the development pipeline. Understanding and experience with modern software development processes and release cycles (CI/CD, GitOps, …). Proficient in Bash / PowerShell / Git. Experience in any one or more: Python, GoLang, Java, C, Ruby. Technical deep expertise and technical leadership, minimum 4 years: Experience in Cloud Security and Serverless Architectures (Microservices and event driven architecture) - (Lambda, DynamoDB, API Gateway, Step-Functions, ECS, EKS). Proficiency with CI/CD, Infrastructure as Code, containerization, orchestration, building DevOps toolchains, and software development process automation. A DevOps mindset focused on driving and supporting best practices, quality, and consistency within all phases of infrastructure automation. A very good understanding of current trends, tools, and practices in DevOps and Cloud Infrastructure. Python design patterns, OO programming. Knowledge of standards and ability to apply good practices in the scope of designing IT solutions architecture. Ability to communicate effectively and inclusively with a diverse range of team members and stakeholders. Experience with the software development lifecycle, the ability to work on cross-functional teams with both technical and non-technical team members, and the desire to learn and grow within the organization. Nice to have: AWS Certifications (Developer, Solution Architect [Associate / Professional], SysOps) Experience with log/event/metric collector and visualization tools (Grafana, ELK, Prometheus) What you get: Salary range xx-xx PLN gross based on the employment contract. Annual bonus payment based on your performance. Dedicated training budget (training, certifications, conferences, diversified career paths etc.). Recharge Fridays (2 Fridays off per quarter available). Take time Program (up to 3 months of leave to use for any purpose). Vacation subsidy available. Flex Location (possibility to perform our work from different places in the world for a certain period of time). Take Time for Charity (additional paid leave of maximum 2 weeks to engage in the charity action of your choice). Private healthcare (LuxMed packages), group life insurance (UNUM) and Multisport. Stock share purchase additions. Yearly sales of company laptops and cars and many more! Apply directly and join us in shaping the future of healthcare. This role is open locally in Warsaw and Poznan, and there are no relocation options included. Only local candidates will be considered. If you feel this offer suits a friend of yours, feel free to share it. Want to know wha

Verified and listed by ActiveJobs. Applications are made directly on Roche's own career page — we never sit in the middle.