BD is one of the largest global medical technology companies in the world, dedicated to advancing health through innovative technology services and solutions. The Cyber Incident Response Analyst is responsible for maintaining the security of BD's systems by minimizing cyber security incident-based losses and ensuring effective incident response across multi-functional teams.
Coordinate with multi-functional teams to ensure timely and effective incident response, following BD’s internal policies and procedures
Serve as liaison between technical teams and the business, ensuring clear and concise communication with management teams
Declare security incidents, assign severity based on business impact, and lead investigation
Reverse-engineer a series of events from correlating multiple log sources
Establish timelines of events and root cause analysis for incidents
Independently prescribe thorough and comprehensive containment and remediation plans to mitigate the impact from security incidents
Identify trends in security incidents and events and propose proactive solutions
Identify, develop and implement automation to optimize processes
Develop and operationalize process documentation including playbooks and work instructions
Provide oversight and support to MSSP (Managed Security Services Provider) incident response resources
Document/Log all Incident details, allocating categorization and prioritization codes
Keep both internal and external partners informed about incident status at agreed intervals
Develop, participate in, and/or conduct tabletop exercises
Demonstrate security knowledge by keeping current on threats, trends, tools, etc
Development and execution of incident communications for both internal and external audiences, where required
Lead and participate in after-hours incidents when required, including international hours and on-call rotation
Qualification
Required
A minimum of a bachelor’s degree is required. Ideal candidate will have a degree in cybersecurity, business, crisis management, communication, project coordination, computer science, or other technical discipline
Excellent verbal and written communication skills, enabling them to convey information clearly to both technical and non-technical audiences.
Introductory project management and self-organization skills.
Enthusiastic about delivering good service, even in challenging situations.
Basic understanding of cybersecurity frameworks and guidelines, including: NIST Cybersecurity Framework, FDA cybersecurity guidance, MITRE ATT&CK framework, Lockheed Martin Cyber Kill Chain
Comfortable participating in and managing group discussions and meetings, developing skills in planning and executing strategies.
Ability to work independently with attention to detail.
Confident to take initiative and make decisions during incident investigations.
Familiarity with technology such as: SIEM (Security Information and Event Management), XDR/EDR (Extended Detection and Response / Endpoint Detection and Response), IDS/IPS (Intrusion Detection System / Intrusion Prevention System), SOAR (Security Orchestration, Automation, and Response), other similar security controls
Familiarity with scripting languages such as Python, PowerShell, Bash, or other
Preferred
Preferred certifications or the ability to acquire, such as GCIH, CISSP, CCSP, or other certifications recognized in the industry
Preferred 1+ years of experience or internships related to general cybersecurity roles, including but not limited to: risk management or assessment, incident response, security engineering, security operations, vulnerability management, threat intelligence, or identity and access management
Benefits
BD helps advance clinical therapy with the process for patients and health care providers with innovative technology services and solutions.
Glassdoor
3.9
Founded in 1897
Franklin Lakes, New Jersey, USA
10001+ employees
https://www.bd.com
BD helps advance clinical therapy with the process for patients and health care providers with innovative technology services and solutions.
