Johnson & Johnson is recruiting for a Lead Analyst, Level 2 Cyber Threat Detection within the Cyber Security Operations Center (CSOC) supporting the Information Security and Risk Management (ISRM) group located in Singapore.
At Johnson & Johnson, we believe health is everything.
Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal.Position Summary: Are you driven by a sense of purpose?
We are focused, driven, and dedicated to providing world-class Security incident handling services.
On the Security Operations Center level 1 (SOC L1)/ level 2 (SOC L2) team, we continually supervise possible malicious activity on endpoints, servers, networks, applications, databases, websites, and other IT systems, looking for malicious activity that could be the indication of a security incident.
We analyze security alerts, assess threat impact, and coordinate containment, mitigation, and eradication strategies by investing in our people.Responsibilities include but are not limited to:Handle security incidents raised by our SOC L1 team and ensure timely handling of the incident.Add context to the incident to understand the behavior, analyzing data from multiple tools and data sources.Participate in the incident response management by providing support to the incident response team (CSOC Level 3).Act as a point of collaboration in coordinated efforts to analyze, assess, and defend against cyber-attacks by partnering with IT/OT contacts, end users, and ISRM colleagues.Participate in OT security incident response process.Make policy and rule recommendations to improve our detection rules and reduce false positive alerts through analysis, collaboration, and metrics collection.Support project teams and colleagues on security issues and related internal control gaps.Analyze systems identified as potentially compromised.Create or update procedural documentation on incident response detection activities.Qualifications:A minimum of a bachelor's degree or equivalent related experience is required.A minimum of 5 years of security operations experience is required.A minimum of 7 years of overall professional IT experience is required.Knowledge of incident response processes is required.Strong IT experience with common operating systems, services, networking protocols, logging, attacker techniques, and tools is required.Proven track record to identify operational deficiencies and drive corrective actions and plans to address them.A solid grasp of the current threat landscape including the latest tactics, tools, and procedures, common malware variants, and effective techniques for detecting malicious activity is required.Experience with Cloud Security technologies such as Microsoft Azure Security Center, Log Analytics, or Azure Sentinel is preferred.Superb interpersonal, verbal, and written communication skills are required.Security certifications such as CISSP, CISM, GCIH, or equivalent is preferred.Experience working with virtual, global teams – including diverse groups of people with multifaceted backgrounds and cultural experience is preferred.Results Orientation/Sense of Urgency – ability to drive to short timelines required.Creative problem-solving skills required.Knowledge and experience with industrial networks would be a plus.This role may require up to 10% travel.For more than 130 years, diversity, equity & inclusion (DEI) has been a part of our cultural fabric at Johnson & Johnson and woven into how we do business every day.
Our diverse workforce and culture of belonging accelerate innovation to solve the world's most pressing healthcare challenges.At Johnson & Johnson, we're on a mission to change the trajectory of health for humanity.
That starts by creating the world's healthiest workforce.
Through cutting-edge programs and policies, we empower the physical, mental, emotional, and financial health of our employees and the ones they love.Depending on location and subject to local legislation, candidates offered employment may be required to show proof of COVID-19 vaccination or secure an approved accommodation prior to the commencement of employment to support the well-being of our employees, their families, and the communities in which we live and work.#J-18808-Ljbffr
