O pozici
Job Description Cyber Security Operations - Incident Response Analyst Our company is an innovative, global healthcare leader committed to improving health and well-being in 140 countries around the world. We focus our research on conditions that affect millions of people around the world, such as Alzheimer's, Diabetes, and Cancer, while expanding our strengths in areas such as vaccines and biologics. Join us in our mission to provide leading innovations and solutions for tomorrow. We are looking to hire an experienced analyst to reinforce the cybersecurity operations team in our Prague technology hub.
Co budeš dělat
- Independently handle incident case investigations and drive to full remediation, including triage, analysis, containment and remediation.
- Assess the impact and risk of incidents, make evidence-based decisions and take appropriate actions according to defined procedures and best practice.
- Utilize various security tools and technologies to detect, investigate, contain, remediate and document cyber threats.
- Communicate and collaborate with other teams, including business liaisons, to ensure proper prioritization and resolution of incident cases.
- Contribute to the development and enhancement of security monitoring and detection capabilities by improving detection logic, filtering, aggregation and automation.
- Actively build and improve team’s knowledgebase and standard procedures.
- Support, assist and provide feedback to junior colleagues.
- Actively participate in development projects building functionality required by incident response team.
- Stay up to date with the latest security trends, attack techniques, vulnerabilities, and best practices.
Koho hledáme
- Required Experience of at least 3 years in a cyber security operations role (SOC, incident response, digital forensics, DLP, threat hunting or similar).
- Strong understanding of operating systems, computer networks, cloud environment, log sources, and attack vectors.
- Investigative mindset with excellent analytical and problem-solving skills.
- Ability and motivation to continuously learn, improve and build new capabilities.
- Hands-on experience with some of the industry standard security tools (in categories like EDR, SIEM, MDM, identity management, sandboxes, proxies, firewalls, PAM).
- Comprehensive knowledge of security monitoring, incident investigation, incident response, and remediation methodologies.
- Scripting skills to solve data processing tasks on ad hoc basis.
- Basic hand-on code analysis in various programming languages.
- Strong communication skills, both written and verbal.
- Experience presenting and reporting to senior leadership.
