Cyber Security Threat Intelligence Researcher (Remote)
Remote Position (USA)
Job Description Summary
The Cyber Threat Intelligence Researcher will be an integral part of the Threat Intelligence Team and the Novartis Cyber Center, providing leadership the most advanced analysis of cyber threats to the company, alongside with practical measures and controls to protect against them.The Cyber Threat Intelligence Researcher will use a variety of tools and resources to proactively collect and analyze threat intelligence, implement in-depth research about threats to the organization and the industry, and work with multiple teams to alert on threats to the organization, as well as to generate and deploy security controls to address them.
Job Description
Major Accountabilities (may include but not limited to):
- Analyze data logs from different security controls to identify cyber threats and patterns, and generate relevant intelligence and recommendations to the operation teams
- Effectively monitor, collect and report Intelligence relevant to the company and the industry
- Accurately analyze the impact / potential impact of an incident or vulnerability
- Implement in-depth research on threat actors, TTPs and vulnerabilities, and generate reports and white papers to relevant stakeholders
- Support and enrich internal security incidents with valuable threat intelligence concepts
- Define use cases to connect between Threat Intelligence indicators to the organization’s security controls
- Work with the Cyber and the Threat Hunting teams to create monitoring tools for highly sophisticated hacking technique
What will you bring to the role:
- 3+ years of experience in Threat Intelligence / technical Intelligence analysis / Threat Hunting / SOC or related fields
- University working and thinking level. Degree in technical/scientific/business area or comparable education/experience
- Experience in reporting to and communicating with senior level management
- Experience in reviewing security controls data logs
- Knowledge of APT campaigns, attack Tactics, Techniques and Procedures (TTPs) and clear understanding and implementation of MITRE ATT&CK framework
- Experience with threat feed research; collect, prioritize, organize and research
- Hands on experience with SIEM (as Splunk)
- Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills; and the ability to communicate information risk-related and incident response concepts to technical as well as nontechnical audiences in English
- Experience in leading projects end-to-end
- Strong collaboration and team-work skills, and ability to work independently
- Creative and proactive approach
- High technical aptitude; quickly learns new skills
- Scripting experience with Python, PowerShell – Big advantage
Preferred Experience
- Professional information security certification, such as CISSP, CISM or ISO 27001 auditor / practitioner is preferred. Professional (information system) risk or audit certification such as CIA, CISA or CRISC is preferred
- Clearance
The pay range for this position at commencement of employment is expected to be between $151,200 and $226,800 per year; however, while salary ranges are effective from 1/1/24 through 12/31/24, fluctuations in the job market may necessitate adjustments to pay ranges during this period. Further, final pay determinations will depend on various factors, including, but not limited to geographical location, experience level, knowledge, skills and abilities. The total compensation package for this position may also include other elements, including a sign-on bonus, restricted stock units, and discretionary awards in addition to a full range of medical, financial, and/or other benefits (including 401(k) eligibility and various paid time off benefits, such as vacation, sick time, and parental leave), dependent on the position offered. Details of participation in these benefit plans will be provided if an employee receives an offer of employment. If hired, employee will be in an “at-will position” and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors.
Why Novartis: Our purpose is to reimagine medicine to improve and extend people’s lives and our vision is to become the most valued and trusted medicines company in the world. How can we achieve this? With our people. It is our associates that drive us each day to reach our ambitions. Be a part of this mission and join us! Learn more here: https://www.novartis.com/about/strategy/people-and-culture
You’ll Receive: You can find everything you need to know about our benefits and rewards in the Novartis Life Handbook. https://www.novartis.com/careers/benefits-rewards
Commitment to Diversity & Inclusion: Novartis is committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.
Join our Novartis Network: If this role is not suitable to your experience or career goals but you wish to stay connected to hear more about Novartis and our career opportunities, join the Novartis Network here: https://talentnetwork.novartis.com/network
EEO Statement:
The Novartis Group of Companies are Equal Opportunity Employers who are focused on building and advancing a culture of inclusion that values and celebrates individual differences, uniqueness, backgrounds and perspectives. We do not discriminate in recruitment, hiring, training, promotion or other employment practices for reasons of race, color, religion, sex, national origin, age, sexual orientation, gender identity or expression, marital or veteran status, disability, or any other legally protected status. We are committed to fostering a diverse and inclusive workplace that reflects the world around us and connects us to the patients, customers and communities we serve.
Accessibility and reasonable accommodations
The Novartis Group of Companies are committed to working with and providing reasonable accommodation to individuals with disabilities. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application process, or to perform the essential functions of a position, please send an e-mail to us.reasonableaccommodations@novartis.com or call +1(877)395-2339 and let us know the nature of your request and your contact information. Please include the job requisition number in your message.
Salary Range
$151,200.00 - $226,800.00
Skills Desired
Communication Skills, Cyber-Security Regulation, Cyber Threat Hunting, Cyber Threat Intelligence (Cti), Cyber Threat Management, Cyber Vulnerabilities, Decision Making Skills, Influencing Skills, Information Security Risk Management ApplyJob Profile
Remote position
Benefits/Perks401k eligibility Discretionary awards Paid Time Off Restricted Stock Units Sign on bonus
Tasks- Analyze data logs
- Collect and report intelligence
- Create monitoring tools
- Define use-cases
- Generate reports
- Research threat actors
- Support security incidents
APT Campaigns Collaboration Communication Cyber threat intelligence Data analysis Education Implementation Incident Response Influencing Leadership Management Medical MITRE ATT&CK Framework Monitoring PowerShell Presentation Project Management Python Recruitment Risk Management Security Controls SIEM SOC Splunk Strategy Technical Technical Intelligence Analysis Threat Feed Research Threat Hunting Training
Experience3 years
EducationBusiness Business degree Comparable Education DO Scientific degree Technical Degree University Degree
CertificationsCIA CISA CISM CISSP CRISC ISO 27001 Auditor
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9