Senior Security Incident Responder
Poznan Pastelowa
GSK
At GSK, we unite science, technology and talent to get ahead of disease togetherGSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. Getting ahead means preventing disease as well as treating it, and we aim to impact the health of 2.5 billion people around the world in the next 10 years.
This role will be a critical function responsible for continuous improvement and execution of the company’s incident response (IR) playbook and a part of a fast-paced operational area within the Cyber Security department. Engineers responsible for global incident response duties must deal with large amounts of data, working to quickly validate, assess, and mitigate current and potential risk to the company. An Engineer in this role will work across tools, data inputs, and third-party intelligence to create actionable items, which help increase the security posture for GSK. This role will work across business units, helping provide information security advice and guidance. It will help ensure the confidentiality and data integrity within the GSK network.
Senior Security Incident ResponderKey Responsibilities:
- Assist in management and coordination of security incident management program and playbooks, including hands on coordination of incidents and reviewing work of lower level Analysts
- Manage incidents through most phases of the incident management lifecycle
- Perform and provide input into the ongoing threat hunting program.
- Assist in development of forensics, analysis standards, incident response capabilities, training, and tool validation.
- Work with internal and trusted external vendors and intelligence sources to convert their feeds to actionable information which can be used to strengthen corporate network security posture
- Provide appropriate escalation of information which enables visibility and decision-making process of Cyber Security Operations leadership team
- Be responsible for registration of incidents and accumulation of statistics and/or metrics related to incident management
- Act as author and provide input into the production of incident reports
- Lead special security projects on an ad hoc basis
- Work with internal and trusted external intelligence related to indicators of compromise (IOC’s) to be converted to actionable information which can be used to strengthen corporate network security posture
Basic Qualifications:
We are looking for professionals with these required skills to achieve our goals:
- Bachelor’s degree in computer science, information systems and/or related areas
- Experience in Incident Response, malware analysis and Threat Hunting.
- Knowledge of a SIEM / EDR tool
- Knowledge of network topology and security to include data analysis, operating system attributes and other industry best practices related to cyber defense strategies.
- Strong technical experience including Linux/Unix and cloud.
- Strong organizational skills, attention to detail in both written and verbal communications.
Preferred Qualifications:
If you have the following characteristics, it would be a plus:
- Experience within network infrastructure, threat intelligence analytics, network analyst, systems administrator
- Three or more years of relevant experience dealing with cyber security incident response.
- Certification: CompTIA Security+ or other related to Security
- Career at one of the leading global healthcare companies
- Hybrid working model
- Attractive reward package (annual bonus & awards for outstanding performance, recognition awards for additional achievements and engagement, holiday bonus)
- Life insurance and pension plan
- Open and inclusive environment which is supportive and welcoming of all diversity strands (gender, race, ethnicity, sexuality, disability, or any other characteristic)
- Private healthcare (2 companies to choose from) for employees and their eligible counterparts
- Sports cards (Multisport)
We want to hear from you and support with any adjustments that you may require during the recruitment process. Please get in touch with our Recruitment Team (pl.recruitment-adjustments@gsk.com) to further discuss this today.
#LI-GSK
#LI-HYBRID
#LI-DEI
Why GSK?
Uniting science, technology and talent to get ahead of disease together.
GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology).
Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves – feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.
GSK is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class.
Important notice to Employment businesses/ Agencies
GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.
Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK’s compliance to all federal and state US Transparency requirements. For more information, please visit GSK’s Transparency Reporting For the Record site.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Cloud Compliance CompTIA Computer Science Cyber defense EDR Forensics Incident response Linux Malware Network security SIEM Threat intelligence UNIX
Perks/benefits: Career development Health care Insurance Salary bonus
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.