Vulnerability Analyst Job

Date: Apr 3, 2019

Location: Singapore, SG

Apply now »
Apply now

Apply for Job

Requisition ID: COM000671

Information Technology Risk Management and Security has become an essential component of the current IT enterprise that provides IT & Automation support to the Pharmaceutical Research, Supply Chain and Marketing organizations.  Increased risks in both the information security (e.g. cyber threats, malware, etc.) and the regulated areas have required that staff possessing such skills is fully embedded within the IT organization.  The enterprise is now dependent on these security and compliance experts for identifying, escalating and remediating such IT Risks in a timely and efficient manner.  Also, emerging technologies like cloud, mobility and data analytics require strong IT Risk and Compliance early involvement.


The Vulnerability Management (VM) Analyst Position is responsible for helping to safeguard the company's assets, intellectual property, and computer systems in support of the company's business objectives. The applicant will be responsible for detecting vulnerabilities, researching potential impact to the organization, and communicating the risks to senior VM team members. The VM Analyst works among a team of skilled analysts to address complex or difficult problems as needed within a 24/7 Cyber Security Fusion Center environment. 


Primary job activities include:

  • Perform scans to identify vulnerabilities or confirm compliance to security standards.
  • Maintain patch and vulnerability management practices to protect against the exploitation of critical vulnerabilities.
  • Facilitate vulnerability remediation efforts through cross Business & IT functions.
  • Apply knowledge of operating systems, applications, and database vulnerability assessments (to include system configuration checks) on various Information Systems.
  • Interpret vulnerability assessment results and report findings to senior VM staff as well as recommendations for remediation.
  • Conduct research on current vulnerabilities and exploits using publicly available, trusted resources and other finished vulnerability products.
  • Implement and utilize a combination of automated tools (e.g., Nessus, Tanium) and manual checks to identify and validate vulnerabilities. 



Required :

  • Education:  BS in Information Security, Computer Science or Engineering or equivalent experience.
  • 2-4 years of computer and network security experience preferred
  • Thorough understanding of fundamental security and network concepts (operating systems, IPS/IDS, TCP/IP, ports, etc.)
  • Demonstrated analytic expertise – to include ability to think critically and logically in a dynamic, high-pressure, fast-paced environment
  • Identify operational roadblocks to ensure timely remediation and countermeasures
  • Excellent written and oral communication skills


Preferred :

  • 1-2 years of experience in vulnerability management, penetration testing or software development. 
  • Experience with Microsoft and Unix-based operating systems
  • Experience managing and tracking vulnerability cases
  • Experience supporting network security investigations
  • GCIA, GCIH, CSX, Security +, Network + or similar security certification.

Job: Compliance & Risk Management
Other Locations:
Employee Status: Regular
Number of Openings: 1
Shift (if applicable):
Hazardous Materials:
Company Trade Name: MSD

Job Segment: Engineer, Information Systems, Risk Management, Pharmaceutical, Embedded, Engineering, Technology, Finance, Science

Apply now »
Apply now

Apply for Job