Specialist,Cyber Intelligence & Response Job

Date: Apr 17, 2019

Location: Singapore, SG

Apply now »
Apply now

Apply for Job

Requisition ID: COM000804

About this Opportunity

MSD is an innovative, global healthcare leader that is committed to improving health and well-being around the world. Our product offering categories include heart and respiratory health, infectious diseases, sun care and women's health. We continue to focus our research on conditions that affect millions of people around the world - diseases like Alzheimer's, diabetes and cancer - while expanding our strengths in areas like vaccines and biologics. We also devote extensive time and energy to increasing access to medicines and vaccines through far-reaching programs that donate and deliver our products to the people who need them.

Information Technology Risk Management and Security has become an essential component of the current IT enterprise that provides IT & Automation support to the Pharmaceutical Research, Supply Chain and Marketing organizations. Increased risks in both the information security (e.g. cyber threats, malware, etc.) and the regulated areas have required that we possessing such skills is fully embedded within the IT organization. The enterprise is now dependent on these security and compliance experts for identifying, escalating and remediating such IT Risks in a timely and efficient manner. Also, emerging technologies like cloud, mobility and data analytics require strong IT Risk and Compliance early involvement.

As part of the Information Technology Risk Management and Security (ITRM&S) organization, you will act as a member of the cyber security incident response team, and be responsible for managing and remediating instances of malicious software infection and other cyber security incidents that occur on MSD’s global network and global computing assets. You will also participate in threat and vulnerability management activities. As part of these duties, you will be expected to manage security incidents to the point of remediation and clearly communicate any remediation activities and status to colleagues and/or senior management. You will:

Investigate on cyber security incidents escalated from our Security Operations Center.
Ability to use log management tools, packet captures reports, data visualization, and pattern analysis to enhance on cyber security incident investigation.
Work with our Managed Security Services Partner (MSSP) to respond to monitored threats and possible intrusions and take the appropriate response actions
Analyze, escalate, and assist in remediation of critical information security incidents.
Cyber Security analysts should have expert knowledge of:
o Information security policies and goals
o Log analysis and event traffic patterns
o Current IT threat landscape and upcoming trends in cyber security
Create, modify and review various reports and dashboards from our security solutions such as internet proxies, network behavioral analysis tools, intrusion detection and endpoint security tools such as antivirus and firewalls.
Respond to cyber security incidents that occur on regulated environments such as SOX, PCI, GxP and shop floor systems.
Assist to maintain/troubleshoot issues with security infrastructure.
Participate and present when required in weekly threat management meetings to report on security incidents that have occurred.
Make recommendations to strengthen the cyber security posture of our computing environment as well as recommend process improvements and tooling to ensure timely response to future security incidents.
Maintain up-to-date security industry awareness and malware trends, and be able to understand how emerging threats may potentially impact the organization.
Improve and challenge existing processes and procedures in a very agile and fast moving information security environment.
Take responsibility for end-to-end problem and service management, and clear communication of ongoing problem status to colleagues and management. 
Maintain ongoing collaboration with other MSD organizations and departments acting in a consultative capacity promoting information security awareness, compliance and supporting ITRM&S policies.
Experience working on a follow-the-sun operating model.


About You:

To be successful to the role, you will ideally need to have a Bachelor of Science in Information Security, Computer Science or Engineering or equivalent experience.
Minimum of 3 years’ experience in IT, prefer with 2 years’ experience in information security.
Prior experience as a cyber-security incident responder preferred
Excellent analytical and communication skills are essential for this role, as well as passion for problem solving, a desire to learn, and the ability to work in a team environment
Various general technical skills including knowledge of networking (i.e. TCP/IP) and security product experience.
Strong written and verbal communication skills.
Experience or familiarity with web content filtering solutions, anti-malware solutions, intrusion detection and response systems.   
Demonstrate the desire to acquire in-depth knowledge of network and host security technologies and products.
Ability to build strong relationships with business and technology stakeholders, self-motivation, personal drive and high energy are highly valuable for this position.
System administration on Windows, Unix or Linux knowledge is preferred.
Knowledge of other information security related products is a plus.  CISSP, GCIH, GCFA, GREM, GPEN or similar security certification is a plus.
Certificate Management Experience with knowledge of enterprise encryption systems, such as full disk encryption, file/folder encryption, sMIME and PKI environments is beneficial.

Job: Compliance & Risk Management
Other Locations:
Employee Status: Regular
Travel: Yes, 10 % of the Time
Number of Openings: 1
Shift (if applicable):
Hazardous Materials:
Company Trade Name: MSD

Job Segment: Defense, Engineer, Special Medicine, Risk Management, Respiratory, Government, Engineering, Healthcare, Finance

Apply now »
Apply now

Apply for Job