Security Incident Response

Are you looking for an opportunity to drive meaningful and impactful change within the Tech organization to ensure that business risks are proactively identified and controlled?  If so, this is the role for you.

The Security Incident Response will be a critical function responsible for helping mature and execute on the company’s incident response (IR) playbook. This role will be part of a fast-paced operational area within the Cyber Security department. Analysts responsible for global incident response duties must deal with large amounts of data, working to quickly validate, assess, and mitigate current and potential risk to the company. An Analyst in this role must work across tools, data inputs and third-party intelligence to create actionable items which help increase the security posture for GSK. This role will work across business units, helping provide information security advice and guidance. This role must also help ensure the confidentiality and data integrity within the GSK network.

Key Responsibilities:​

This role will provide YOU the opportunity to lead key activities to progress YOUR career, these responsibilities include some of the following

• Assists in managing corporate incident response program and playbooks.

• Assist in management and coordination of security incident management program, including hands on coordination of highly critical incidents.

• Work with internal and trusted external intelligence related to indicators of compromise (IOC’s) to be converted to actionable information which can be used to strengthen corporate network security posture

• Provide appropriate escalation of information which enables visibility and decision-making process of Cyber Operations leadership team.

• Provide direct technical expertise into the ongoing development of the threat hunting program

• Manages critical incidents through all phases of the incident management lifecycle.

• Analyse security logs, alerts, and outputs from diverse sources to interpret potential security incidents

• Responsible for documentation of incidents and accumulation of statistics and/or metrics related to incident management.

• Authors and provides input into the production of incident reports

• Perform special security projects on an ad hoc basis

• Assist in development of incident response capabilities, training, and tool validation

Why You!

Basic Qualifications

 We are looking for professionals with these required skills to achieve our goals:

• Bachelor's degree in computer science, information systems, or a related technical discipline or professional experience directly related to information security, cyber, or computer network defense

• Experience in security monitoring, threat hunting, and incident response.

• 3 + years of related experience in cybersecurity or computer network defense

• Working knowledge of common security tools, such as a SIEM, EDR, scanners, proxies, or WAF.

Preferred Qualifications:

If you have the following characteristics, it would be a plus:

• Demonstrated experience in an enterprise-level incident response team or security operations center. 

• Comprehensive knowledge of cybersecurity frameworks, threat intelligence, and industry best practices.

• Exceptional communication and teamwork capabilities.

• Strong organizational skills, detail oriented in both written and verbal communications.

• Proficiency in scripting or programming languages is a plus.

• Knowledge of network topology and security to include data analysis, operating system attributes and other industry best practices related to cyber defense strategies.

• Professional certifications like GCIH, ATT&CK Threat Hunting and Detection Engineering Certification, GISAC Cloud Threat Detection (GCTD) or equivalent are highly desirable.

#LI-GSK

The annual base salary for new hires in this position ranges from $80,250 to $133,750 taking into account a number of factors including work location within the US market, the candidate’s skills, experience, education level and the market rate for the role. In addition, this position offers an annual bonus and eligibility to participate in our share based long term incentive program which is dependent on the level of the role. Available benefits include health care and other insurance benefits (for employee and family), retirement benefits, paid holidays, vacation, and paid caregiver/parental and medical leave.

Please visit  GSK US Benefits Summary to learn more about the comprehensive benefits program GSK offers US employees.

Why GSK?

Uniting science, technology and talent to get ahead of disease together.

GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology).

Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves – feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.

If you require an accommodation or other assistance to apply for a job at GSK, please contact the GSK Service Centre at 1-877-694-7547 (US Toll Free) or +1 801 567 5155 (outside US).

GSK is an Equal Opportunity Employer and, in the US, we adhere to Affirmative Action principles. This ensures that all qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class.

Important notice to Employment businesses/ Agencies

GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.

Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK’s compliance to all federal and state US Transparency requirements. For more information, please visit the Centers for Medicare and Medicaid Services (CMS) website at https://openpaymentsdata.cms.gov/