Technical Leader - Digital Health Platform, Secure Cloud
Job Description
At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections, where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters.
The Position
Technical Leader - Digital Health Platform, Secure Cloud
Roche Digital Technology (RDT) is where innovation meets purpose. As a global team at the heart of Roche, we are a community of business-minded technologists committed to help shape tomorrow’s digital future of healthcare. Our mission is to power Roche through cutting-edge digital technologies, harnessing the potential of artificial intelligence, data, and scalable tech innovations. Driven by purpose and passion, we’re building a future where digital is a core strength across all of Roche, enabling smarter ways of working, unlocking human potential, and driving breakthroughs that truly matter for millions of patients around the world.
At Roche, we offer a hybrid work model that combines flexibility with in-person collaboration. For now, we require our employees to be in our offices on average two days per week. The specific office days may vary depending on business needs, such as workshops, conferences, town halls, team meetings, and other collaborative events.
Roche’s expanding digital product portfolio demonstrates its commitment to provide healthcare professionals, laboratories, and patients with digital and digitally-enabled solutions that transform patient care. The existing product portfolio includes decision support systems, data management solutions, and workflow solutions. At the center of these diverse types of solutions is always patient data security and privacy as the highest priority for Roche.
In this context, Roche has built a global team that builds, secures, and operates infrastructure platforms (cloud and on-prem) for its digital products. This team is working with a high freedom to operate in a self-organized setup and is responsible for tackling the cybersecurity, compliance, and infrastructure challenges of the healthcare industry while enabling high-velocity product development.
The opportunity:
The Technical Leader will join the Secure Account Management (SAM) team — responsible for cloud infrastructure, account provisioning, security, and governance across Roche's digital product portfolio. The team manages 650+ AWS accounts and enables application teams to build and operate healthcare solutions by providing secure, standardised infrastructure while maintaining development and deployment autonomy.
You will own the technical direction and architecture decisions for SAM's cloud platform. This means designing the systems that provision, secures, and governs hundreds of AWS accounts globally — and ensuring the engineering team builds them to a high standard. Your domain is the *how*: architecture, implementation quality, technical standards, and engineering growth.
What you will do:
Own technical architecture and design decisions for SAM — landing zone design, account vending, IAM governance, and identity management (AWS Identity Center).
Translate the Security Architect's guardrail requirements and security standards into implementable engineering work — Terraform modules, automation pipelines, and detection/remediation patterns.
Design for platform consumers, not just infrastructure: build reusable, self-service modules and APIs that over 200+ product teams can adopt without needing to contact SAM for every change.
Drive automation-first engineering: replace manual, ticket-driven workflows with programmatic access, IaC-managed configuration, and self-service tooling.
Set and enforce technical standards: code review expectations, Terraform module structure, CI/CD pipeline design, testing practices, and documentation-as-code.
Lead incident response for platform-level issues: coordinate resolution, run post-incident reviews, and drive reliability improvements into the engineering backlog.
Mentor and grow engineers: conduct design reviews, pair on complex problems, provide constructive PR feedback, and create an environment where the team's technical capability improves over time.
Evaluate and introduce new technologies, patterns, and AWS services
Who you are:
Total minimum 8 years of experience in IT split between:
Technical Experience, minimum 4 years
Experience with architecture, software development or operations of internet-scale SaaS products. Previously worked as DevOps engineer, Cloud Engineer, System Reliability Engineer, Technical Leader, or an Architect.
Very good understanding and hands-on working experience in AWS.
Experience in cloud security services.
Experience with AWS cloud infrastructure with medium to large global enterprises with global geographical topologies.
Understanding and hands on working knowledge of the following technologies AWS cloud services (AWS IAM, AWS Organisation, AWS Identity Center), GitLab, Pipelines, Terraform.
Infrastructure-as-Code and related tools (Terraform / Terragrunt / GitLab pipelines, GitHub actions).
Knowledgeable in DevSecOps and integrating security into the development pipeline.
Understanding and experience with modern software development processes and release cycles (CI/CD, GitOps, …).
Proficient in Bash / PowerShell / Git.
Experience in any one or more: Python, GoLang, Java, C, Ruby.
Technical deep expertise and technical leadership, minimum 4 years:
Experience in Cloud Security and Serverless Architectures (Microservices and event driven architecture) - (Lambda, DynamoDB, API Gateway, Step-Functions, ECS, EKS).
Proficiency with CI/CD, Infrastructure as Code, containerization, orchestration, building DevOps toolchains, and software development process automation.
A DevOps mindset focused on driving and supporting best practices, quality, and consistency within all phases of infrastructure automation.
A very good understanding of current trends, tools, and practices in DevOps and Cloud Infrastructure.
Python design patterns, OO programming.
Knowledge of standards and ability to apply good practices in the scope of designing IT solutions architecture.
Ability to communicate effectively and inclusively with a diverse range of team members and stakeholders.
Experience with the software development lifecycle, the ability to work on cross-functional teams with both technical and non-technical team members, and the desire to learn and grow within the organization.
Nice to have:
AWS Certifications (Developer, Solution Architect [Associate / Professional], SysOps)
Experience with log/event/metric collector and visualization tools (Grafana, ELK, Prometheus)
What you get:
Salary range xx-xx PLN gross based on the employment contract.
Annual bonus payment based on your performance.
Dedicated training budget (training, certifications, conferences, diversified career paths etc.).
Recharge Fridays (2 Fridays off per quarter available).
Take time Program (up to 3 months of leave to use for any purpose).
Vacation subsidy available.
Flex Location (possibility to perform our work from different places in the world for a certain period of time).
Take Time for Charity (additional paid leave of maximum 2 weeks to engage in the charity action of your choice).
Private healthcare (LuxMed packages), group life insurance (UNUM) and Multisport.
Stock share purchase additions.
Yearly sales of company laptops and cars and many more!
Apply directly and join us in shaping the future of healthcare.
This role is open locally in Warsaw and Poznan, and there are no relocation options included.
Only local candidates will be considered.
If you feel this offer suits a friend of yours, feel free to share it.
Want to know what it’s like to be a part of Roche IT first-hand? Check out our blog!
https://careers.roche.com/global/en/we-are-roche
…..
The controller of your personal data is Roche Polska Sp. z o.o., ul. Domaniewska 28, 02-672 Warsaw. The data is processed for the purpose of recruitment. You have the right to access your data, rectify it, delete it, limit processing, transfer it and - if processing is based on your consent - withdraw this consent at any time. Contact the Data Protection Officer at: [email protected]. More information on the principles of processing your personal data by Roche at the link:
https://www.roche.pl/pl/content/klauzula-informacyjna-rekrutacja-en.html
Roche Polska sp. z o.o. operates in full compliance with the law and does not tolerate any violations. Roche Polska sp. z o.o. has implemented a Procedure for Reporting Violations of Law. If you wish to report any irregularities related to our activities, all necessary information regarding the reporting process can be found on our website: https://www.roche.pl/kontakt/ochrona-sygnalistow-zglaszanie-naruszen.
PL (for JDs in Polish)
Administratorem Twoich danych osobowych jest spółka Roche Polska Sp. z o.o., ul. Domaniewska 28, 02-672 Warszawa. Dane przetwarzane są w celu prowadzenia rekrutacji. Przysługuje Ci prawo dostępu do treści swoich danych, ich sprostowania, usunięcia, ograniczenia przetwarzania, przenoszenia oraz – w sytuacji, gdy są one przetwarzane na podstawie udzielonej zgody – cofnięcia tejże zgody w dowolnym momencie. Kontakt do Inspektora Ochrony Danych: [email protected]. Więcej informacji o zasadach przetwarzania przez Roche Twoich danych osobowych pod linkiem:
https://www.roche.pl/pl/content/klauzula-informacyjna-rekrutacja-pl.html
Roche Polska Sp. z o.o. działa w pełnej zgodności z przepisami prawa i nie toleruje żadnych naruszeń. W Roche Polska Sp. z o.o. obowiązuje Procedura zgłaszania naruszeń prawa. W przypadku chęci zgłoszenia nieprawidłowości związanych z naszą działalnością, wszelkie niezbędne informacje dotyczące zgłaszania naruszeń znajdują się na naszej stronie internetowej: https://www.roche.pl/kontakt/ochrona-sygnalistow-zglaszanie-naruszen.
Compensation & Benefits
The expected salary range for this position, based on the primary location of Warsaw Grafit is 228’900.00 PLN - 425’100.00 PLN. Final compensation will be determined by a number of factors, including your skills, experience, qualifications, and location. In addition to base pay, this role may be eligible for a discretionary annual bonus with a target of 20% subject to both individual and company performance.This position also offers an attractive benefits package.
Learn more about how we reward our employees at Roche.
Who we are
A healthier future drives us to innovate. Together, more than 100’000 employees across the globe are dedicated to advance science, ensuring everyone has access to healthcare today and for generations to come. Our efforts result in more than 26 million people treated with our medicines and over 30 billion tests conducted using our Diagnostics products. We empower each other to explore new possibilities, foster creativity, and keep our ambitions high, so we can deliver life-changing healthcare solutions that make a global impact.
Let’s build a healthier future, together.
Roche is an Equal Opportunity Employer.