Security Analyst

Location: Kharadi, Pune
 

Life Unlimited. At Smith+Nephew, we design and manufacture technology that takes the limits off living!

The Security Analyst works on the detection and response for potential security incidents on the Smith & Nephew network, systems, and applications. This includes technical analysis and incident management, communications, and reporting. The role works with the Global SOC Manager.

The work includes partnering closely with other functions within Information Security, with outsourced tier 1 SOC functions, with the wider IT team including Service Desk, as well as with HR, Legal, Procurement, and other functions. The role interacts with end users and technical resolver teams within Smith & Nephew as well as outsourced suppliers.

The working hours are Monday to Friday (11AM - 8PM IST).

What will you be doing?

• Complete alert and incident response activities following standard runbooks and processes, with work to include the initial triage and analysis, recording of the incident with all relevant details to high standards, and documenting all containment and response actions.
• Uses Smith+Nephew technology platforms and security tools to conduct investigations such as threat hunting or other proactive investigations outside the incident process.
• Write comprehensive reports including assessment-based findings, outcomes, and propositions for enhancements such as new detection plays, new runbooks or playbooks, process improvements, or tuning detection rules.
• Mentoring and coaching other team members, sharing skills and experience to enable higher levels of performance.
• Provide technical domain expertise to projects and initiatives aimed at improving the capability and maturity of Smith & Nephew information security practices.

What will you need to be successful?

• Bachelor´s degree in Computer Science or a related subject preferred or equivalent experience.
• Licenses/Certifications: Relevant entry- or mid-level security certifications are advantageous but not required. Job-specific training will be provided.
• Experience: At least 4 years of experience in a relevant Information Security role.
• Experience working hands-on with SIEM and EDR/XDR technologies for the identification and response to existing and emerging threats.
• Familiar with MITRE ATT&CK for the identification and mapping of attacker tactics, techniques, and procedures (TTPs).
• Familiarity with network models (OSI and TCP/IP), common network terminology and concepts, and network equipment.
• Must be able to correctly interpret logs for firewalls (including WAF and IDS/IPS), Windows and Linux operating system logs, AWS and Azure cloud logs.
• Familiarity with web-related technologies (Web applications, Web Services, Service Oriented Architectures) and network/web-related protocols.

Competences:

• Understanding of industry frameworks such as MITRE ATT&CK, MITRE D3FEND, NIST CSFv2, and NIST SP800-61r2.
• Using SIEM (including scripted query languages) and EDR/XDR technologies, threat intelligence tools, and ITSM tools.
• Familiarity with AWS and Azure cloud technologies and cloud security standards (CSA or equivalent).
• Understanding of API security and familiarity with AI security concepts (such as NIST AI RMF).
• Familiarity with ITIL methodology and terminology.
• Excellent written and oral communication skills, service attitude, and analytical approach to problem solving.
• Ability to work independently without daily direction, balancing conflicting priorities, and effectively tracking and managing task completion to committed deadlines.

You. Unlimited.

We believe in crafting the greatest good for society. Our strongest investments are in our people and the patients we serve.

Inclusion, Diversity and Equity- Committed to Welcoming, Celebrating and Thriving on Diversity, Learn more about Employee Inclusion Groups on our website (https://www.smith-nephew.com/ ).

Other reasons why you will love it here!

• Your Future: Major medical coverage + policy exclusions and insurance non-medical limit. Educational Assistance.
• Work/Life Balance: Flexible Personal/Vacation Time Off, Privilege Leave, Floater Leave.
• Your Wellbeing: Parents/Parents in Law’s Insurance (Employer Contribution of 7,000/- annually), Employee Assistance Program, Parental Leave.
• Flexibility: Hybrid Work Model (For most professional roles)
• Training: Hands-On, Team-Customized, Mentorship
• Extra Perks: Free Cab Transport Facility for all employees; One-Time Meal provided to all employees as per shift. Night shift allowances.

#LI-DP1

Stay connected and receive alerts for jobs like this by joining our talent community.

We're more than just a company - we're a community! Follow us on LinkedIn to see how we support and empower our employees and patients every day.  

Check our Glassdoor page for a glimpse behind the scenes and a sneak peek into You. Unlimited., life, culture, and benefits at S+N.

Explore our new website and learn more about our mission, our team, and the opportunities we offer.