1. Home
  2. IT Security OperationsIncident Response Analyst L2
Expires soon
SANDOZ

IT Security OperationsIncident Response Analyst L2

  • Cambridge (Cambridgeshire)
  • IT development
Apply Now

Job description

Job Description

Novartis provides innovative healthcare solutions that address the evolving needs of patients and societies.

Headquartered in Basel, Switzerland, Novartis offers a diversified portfolio to best meet these needs: innovative medicines, cost-saving generic and biosimilar pharmaceuticals and eye care.

Novartis has leading positions globally in each of these areas.

In 2016, the Group achieved net sales of USD 48.5 billion, while R&D throughout the Group amounted to approximately USD 9.0 billion.

Novartis Group companies employ approximately 121,000 full-time-equivalent associates.

Novartis products are sold in approximately 155 countries around the world.

Novartis Business Services IT (NBS IT) is working to support Novartis to deliver better patient outcomes through innovative use of information and technology. As technology is reshaping the healthcare industry, IT will be a differentiator for our businesses, inspiring new ideas and enabling Novartis to reimagine medicine.

To continue to add even greater value for the business we need to have the right people with the right capabilities in the right location. We need to be customer-oriented and focus on bringing the best services and solutions to the business – both globally and locally – to support our patients.

NBS IT offers this extraordinary work experience with a real opportunity to develop in a highly fast-paced technology-driven environment where collaboration and innovation are at the heart of who we are and what we do.

We are actively seeking a IT Security OperationsIncident Response Analyst L2 to join our team in Cambridge, Massachusetts office location.

JOB PURPOSE:

The purpose of the Security Operations Expert L2 role is to defend Novartis and its patients by investigating security incidents that have been triaged and escalated by the first level staff of the Novartis Security Operations Center.

This includes performing analysis of indicators of compromise, investigating security incidents by reviewing relevant security data, coordinating with impacted application owners and users and implementing or arranging remediation actions.

KEY RESPONSIBILITIES
• Handles security incidents escalated from L1 SOC using Security Incident Response life cycle (preparation; detection and analysis, containment, eradication and recovery; post-incident activity)
o Monitor L2 escalation queues within incident response tools
o Investigates, resolves standard level incidents using various security event sources (FW, IDS, PROXY, AD etc.)
o Investigations into non-standard incidents and execution of standard scenarios
o Escalates to L3 if investigations uncover unusual or atypical situations
• Works directly with L1s for incident response and improves existing documentation of work instructions.
• Checks incidents for quality and improvement.
• Keeps accurate incident records
• Provides incident information to IR leads and coordinators for reporting
• Collaborates with other security teams in the global IT Security organization in Novartis
• Participates in, or works directly on additional projects, assignments or initiatives as assigned.
• Security incidents are effectively identified, documented, and investigated.
• Demonstrates an understanding of current and emerging attack methods, suggests new indicators of compromise to be monitored.
• Understands Novartis business, likely targets of attackers, and suggests security controls based on observed incidents.
Posting Title

IT Security OperationsIncident Response Analyst L2

Desired profile

Minimum requirements

Novartis is currently recruiting for an individual demonstrating the following:
• BA or BS in Computer Science, Information Technology or related field highly desired
• Experience working in a multinational organization desired
• Experience with IT security incident response, host and network investigations, malware analysis
• Certifications such as GIAC certifications, Certified Ethical Hacker (CEH) preferred
• 3+ years in incident response or related IT or IT Security field
• Hands-on experience with security tools and devices, operating systems, and/or networking devices desired
• Knowledge of IT Security Standards, Control Frameworks and Risk Management techniques
• Proven skills and experience in log analysis, incident investigations – including guidance for remediation
• Good oral and written communication skills
• Good interpersonal and organizational skills
Job Type

Full Time
Country

USA
Work Location

Cambridge, MA
Functional Area

Information Technology
Division

NBS
Business Unit

IT NBS
Employment Type

Regular
Company/Legal Entity

Novartis Corporation
EEO Statement

The Novartis Group of Companies are Equal Opportunity Employers and take pride in maintaining a diverse environment. We do not discriminate in recruitment, hiring, training, promotion or any other employment practices for reasons of race, color, religion, gender, national origin, age, sexual orientation, marital or veteran status, disability, or any other legally protected status.

Make every future a success.
  • Job directory
  • Business directory
    •