Job Description

Johnson & Johnson is recruiting for a Lead Analyst, Level 2 Cyber Threat Detection within the Cyber Security Operations Center (CSOC) supporting the Information Security and Risk Management (ISRM) group located in Singapore.At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more atPosition SummaryAre you driven by a sense of purpose? We are focused, driven, and dedicated to providing world-class Security incident handling services. On the Security Operations Center level 1 (SOC L1)/ level 2 (SOC L2) team, we continually supervise possible malicious activity on endpoints, servers, networks, applications, databases, websites and other IT systems, looking for malicious activity that could be the indication of a security incident. We analyze security alerts, assess threat impact and coordinate containment, mitigation and eradication strategies by investing in our people.Responsibilities include but are not limited to;

• In this role, as the SOC L2 Lead Analyst, you will be tasked with handling security incidents raised by our SOC L1 team and ensure timely handling of the incident.
• Add context to the incident to understand the behavior, analyzing data from multiple tools and data sources
• Participates to the incident response management by providing support to the incident response team (CSOC Level 3)
• Act as a point of collaboration in coordinated efforts to analyse, assess and defend against cyber-attacks by partnering with IT/OT contacts, end users and ISRM colleagues
• Participate in OT security incident response process
• Make policy and rule recommendation to improve our detection rules and reduce False positives alerts through analysis, collaboration and metrics collection.
• Support project teams and colleagues on security issues and related internal control gaps.
• Analyze systems identified as potentially compromised
• Create or update procedural documentation on incident response detection activities

QualificationsQualifications:

• A minimum of a bachelor\xe2\x80\x99s degree or equivalent related experience is required.
• A minimum of 5 years of security operations experience is required
• A Minimum of 7 years of overall professional IT experience is required.
• Knowledge of incident response processes is required.
• Strong IT experience with common operating systems, services, networking protocols, logging, attacker techniques and tools is required and the ability to articulate the relationship between the various data sources.
• Proven track record to identify operational deficiencies and drive corrective actions and plans to address them.
• A solid grasp of the current threat landscape including the latest tactics, tools, and procedures, common malware variants, and effective techniques for detecting this malicious activity is required
• Experience with Cloud Security technologies as Microsoft Azure Security Center, Log Analytics or Azure Sentinel is preferred
• Superb interpersonal, verbal, and written communication skills are required.
• Security certifications such as CISSP, CISM, GCIH or equivalent is preferred
• Possessing the credibility and presence to act as subject matter expert is required.
• Experience working with virtual, global teams \xe2\x80\x93 including diverse groups of people with multifaceted backgrounds and cultural experience is preferred
• Results Orientation/Sense of Urgency \xe2\x80\x93 ability to drive to short timelines required.
• Creative problem-solving skills required.
• Knowledge and experience with industrial networks would be a plus.
• This role may require up to 10% travel

#JNJTechFor more than 130 years, diversity, equity & inclusion (DEI) has been a part of our cultural fabric at Johnson & Johnson and woven into how we do business every day. Rooted in Our Credo, the values of DEI fuel our pursuit to create a healthier, more equitable world. Our diverse workforce and culture of belonging accelerate innovation to solve the world\xe2\x80\x99s most pressing healthcare challenges.We know that the success of our business \xe2\x80\x93 and our ability to deliver meaningful solutions \xe2\x80\x93 depends on how well we understand and meet the diverse needs of the communities we serve. Which is why we foster a culture of inclusion and belonging where all perspectives, abilities and experiences are valued and our people can reach their potential.At Johnson & Johnson, we all belong.At Johnson & Johnson, we\xe2\x80\x99re on a mission to change the trajectory of health for humanity. That starts by creating the world\xe2\x80\x99s healthiest workforce. Through cutting-edge programs and policies, we empower the physical, mental, emotional and financial health of our employees and the ones they love. As such, depending on location and subject to local legislation, candidates offered employment may be required to show proof of COVID-19 vaccination or, in certain countries, secure an approved accommodation prior to the commencement of employment to support the well-being of our employees, their families and the communities in which we live and work. If you are invited to interview for the position, your recruiter will advise on the vaccine requirement status in your geographic location.

Johnson & Johnson