Senior Analyst, Threat Analysis

Resilience is ushering in an era of “Biomanufacturing-as-a-Service” that we expect will displace in-house manufacturing as well as traditional contract manufacturing and development organizations (CDMOs). We see this as a paradigm shift in biomanufacturing akin to the IT industry’s adoption of Infrastructure-as-a-Service (IaaS) and Platform-as-a-Service (PaaS) that rendered obsolete corporate-owned/operated data centers or corporate servers co-located in hosting facilities.

Role

Resilience is looking for a Senior Threat Analyst to implement the security vision, with supporting architectures and solutions, across the entire Resilience Digital Platform, with a focus on the intersection of industrial control systems (ICS), local computing and cloud computing. You will, in cooperation with Security leadership and across the Digital business, implement this vision into control systems, and purchased and built technology. Test and implement approaches for applying privacy enhancing technologies to protect Resilience and customer intellectual property.

The Senior Threat Analyst must have a broad technical knowledge of and experience with IT security, cloud computing, compliance frameworks, identity and access management, service-oriented architectures, distributed systems, networking, modern application architectures, and the like; plus, strong understanding of virtualization, storage systems, software-defined networks, Internet Protocol, high availability and high scalability using modern techniques (scale out versus scale up).

Job Responsibilities

• Researches and analyzes new cyber threats as they are discovered and disclosed to the public.
• Identifies new sources of threat intelligence and integrates them into workflows.
• Assesses the potential impact of attacker TTPs and threat vectors to the organization.
• Works closely with threat intelligence vendors and open-source leads to ensure that the organization is protected against the latest threats.
• Coordinates with remote sites and assists them with maintaining a strong security posture.
• Responsible for the automated ingest of security feeds and IOCs into security tooling.

Qualifications

• 5+ years’ experience in security or related fields with at least 1 year in a threat intelligence role
• Experience with SIEM and log collection tools
• Understanding of malware and malware analysis techniques
• Strong communication skills and the ability to communicate technical matters to a non-technical audience
• Understanding of Advanced Persistent Threats and the MITRE ATT&CK® Framework
• Experience with network and endpoint security tooling
• Understanding of the OWASP Top Ten

Preferred Experience

• BS in Computer Science or related field, or equivalent work experience
• Experience working in the health and life science fields, and an understanding of GxP and regulations that apply to healthcare data
• Industry recognized certifications including CISSP, SANS GOSI, and SANS GCTI
• Ability to script is a plus