Sr. Cybersecurity Operations Analyst

Position Summary:

This position will be located on-site at our HQ located in Bedford, MA, the Sr. Cybersecurity Operations Analyst position will be assigned to the IT Department and report to the Director, IT Cybersecurity. The position will be involved in challenging IT and Cybersecurity projects that include a wide range of technologies spread across multi-site, multi-cloud, laboratory, manufacturing, and validated environments. Along with the IT and Cybersecurity members, your purpose will be to reduce risk to the business through strengthening the security posture of the organization, detect-respond-remediate-recover from threats, streamline security processes, and improve efficiency across security resources. This position does require a desire to seek knowledge and execute duties across various Cybersecurity Work Roles and technologies.

Principal Duties and Responsibilities include the following:

(Other duties may be assigned)

• Monitor and analyze networks, endpoints, and applications for threats and anomalous activity
• Investigate, resolve, and tune security alerts-policies-configurations, escalations and incidents utilizing existing technologies
• Hunt for threats with existing tools, analyze and remediate on detected and reported threats or discovered through vulnerability assessment and pen testing
• Initiate incident response efforts, maintain playbooks for containment and recovery
• Collaborate with internal and external stakeholders to analyze technologies and associated security controls to ensure compliance with established security frameworks and regulatory requirements
• Protect and defend the company, reducing risk, and increasing security posturing.
• Coordinate with departments across the organization to resolve security issues and create new security solutions to existing and future technologies
• Educate yourself, take the initiative in absence of leadership, show ownership of assigned duties, and foster teamwork with IT and Cybersecurity to discuss, coordinate, schedule, and execute projects and plans

Qualification Requirements:

• Minimum bachelor’s degree in information security, cybersecurity or related information technology field
• Information Technology, Networking, and Cybersecurity certifications, training and education outside traditional Higher Education
• Proof of equivalent combination of experience and training which provides the required knowledge, skills and abilities necessary to execute the essential functions of the position.
• 5-10 years’ experience as a Cybersecurity Analyst, Operator, Defender or Architect
• Work in the Biotech, Pharmaceutical, Biopharmaceutical, Healthcare, or Military sector is preferred
• In relation to IT/Cybersecurity: NIST, ISO, GDPR, or FDA Regulatory Controls and Frameworks
• Environments consisting of on-prem, multi-site, multi-cloud, multi-OS, validated, virtual, laboratory, manufacturing, and ICS/SCADA/IoT
• Security tools consisting of EDR, XDR, MDR, SIEM, SOCaaS, Mobile, NGFW, Zero-Trust, Training/Education, Phishing and more
• Access control, network security, cloud security, incident response, security policy creation, pen testing, vulnerability assessment, and hardening of OS/Network/Application security
• Learn new technologies, create and streamline processes, improve alerts/policies/rules for detection and alerting, gathering and reporting on metrics