SOC Analyst III Position Available In Middlesex, New Jersey

Job Description:

About the Department The Finance & Operations department bringsinsights and intelligence to inform decision making & drivesdigitalization and business solutions to attain NNI goals. Finance& Operations works closely across the organization to guideenterprise-wide resource allocations, investment choices, drivecore operations and develop insights to drive growth andoperational excellence across the value chain while innovating forfuture capabilities. Our focus on innovation ensures we’reconstantly building future capabilities. We’re responsible forregulating accounting, upholding workplace safety, managing oursupply chain and sampling, supporting technological and datainnovation, maintaining our facilities and assuring the integrityand completeness of all business transactions. At Novo Nordisk, youwill have the opportunity to build a life-changing career in aglobal business environment. We encourage our employees to make themost of their talent, and we reward hard work and dedication withopportunities for continuous learning and personal development. Areyou ready to maximize your potential with us?

The Position:

Thishighly technical position directly participates in Global SecurityOperations activities including prevention, detection, and responseto IT security incidents worldwide. The IT Security OperationsSpecialist will support a wide range of IT security activitiesincluding monitoring of alerts, investigation of alerts, incidentresponse, vulnerability response, threat intelligence, and digitalforensics. Individuals in this position will also have additionalduties assisting with the implementation of IT security strategyand serving as a security advisor to ensure IT systems areimplemented and maintained to the highest security standards.

Individuals in this position will demonstrate expertise of currententerprise technologies and will also be responsible for performingtechnical risk and vulnerability assessments at the network,system, and application level. Some responsibilities developing andimplementing security controls and formulating operational riskmitigations.

Relationships:

Reports directly to the manager ofGlobal Security Operations – Americas. Will work closely with IToperations staff, application development teams, system managers,and line of business representatives. This role will interfaceroutinely with key stakeholders including senior securityoperations personnel, Global Security Operations management team,line of business personnel as well as third party technologyservice providers.

Essential Functions:

• Demonstrates highknowledge in multiple domains of IT Security and subject matterexpertise in at least one domain such as incident response,vulnerability assessment, or threat intelligence
• Works under onlygeneral direction. Independently determines and develops approachto solutions. Provides technical solutions to a wide range ofdifficult problems.
• Handles complex tasks such as security eventanalysis, vulnerability assessment, and reporting with no definedprocedures in place.
• Often sets directions and delivers resultsin own role which have a significant impact to the Global SecurityOperations organization or its stakeholders in areas such asincident response, vulnerability management, and threatintelligence through application of expertise and establishedprocess in these functions
• Provides guidance and training to lessexperienced professional or support staff. Demonstrates leadershipcapabilities. Assists in leading a project in the development andimplementation of processes and programs
• Leverages knowledge oftopics such as networking, operating systems, applicationarchitecture, cloud, log management, SIEM, SOAR, case management,and investigative techniques
• Serves as area specialist within oneor several functions across Global Security Operations. Withinthese functions the individual recognizes and responds tostakeholder needs and ensures commitments are delivered upon
• Engages in frequent internal and cross-organizational contact.

Works closely with external vendors. Represents organization inproviding solutions to difficult technical issues associated withspecific projects

• Operates common tools and systems forvulnerability assessment, penetration testing, network intrusiondetection, intrusion prevention, network analysis, log management,SIEM, and SOAR. Applies subject matter knowledge to solve commonneeds such as verifying vulnerabilities, confirming securityincidents, developing reports, and resolving system errors
• Proactively works to sustain operations through activities such asprocurement and renewals for software and hardware support. Planfor systems licensing, lifecycle management, and capacity. Gathersquotes and request purchasing of software, services, and hardwareas needed for projects. Participate in the IT Security planning andbudgeting process
• Demonstrates ability to identify betterpractice and create improvements in methods, techniques,approaches, etc.
• Participates in evaluation of new securitytools, techniques, and technologies
• Applies knowledge of commonenterprise IT architectures, platforms, and services such asclient/server, SaaS, PaaS, and IaaS
• Applies knowledge ofinformation security of common threats, vulnerabilities, andexposures applicable to IT systems

Physical Requirements:

5%overnight travel required. This position would require shift workwhich will include weekends.

Qualifications:

• A Bachelor’s degreein Computer Science, Information Systems, or Information Securityis required; relevant experience may be substituted for degree whenappropriate. Advanced degree preferred
• A minimum of 6 years ofprogressively responsible relevant experience
• Ability to lead aproject in the development and implementation of processes andtechnology
• Ability to develop and maintain relationships withinthe global organization
• Strong attentional to detail is required
• Experience with incident response and digital forensics required
• Vendor neutral technical certifications (CISSP, CISM, GCIH)preferred
• Vendor sponsored and professional certifications(Microsoft, AWS, etc.

) ) desirable The base compensation range forthis position is $96,670 to $178.840 Base compensation isdetermined based on a number of factors. This position is alsoeligible for a company bonus based on individual and companyperformance. Novo Nordisk offers long-term incentive compensationand or company vehicles depending on the position’s level or othercompany factors. Employees are also eligible to participate inCompany employee benefit programs including medical, dental andvision coverage; life insurance; disability insurance; 401(k)savings plan; flexible spending accounts; employee assistanceprogram; tuition reimbursement program; and voluntary benefits suchas group legal, critical illness, identity theft protection, petinsurance and auto/home insurance. The Company also offers time offpursuant to its sick time policy, flex-able vacation policy, andparental leave policy. We commit to an inclusive recruitmentprocess and equality of opportunity for all our job applicants. AtNovo Nordisk we recognize that it is no longer good enough toaspire to be the best company in the world. We need to aspire to bethe best company for the world and we know that this is onlypossible with talented employees with diverse perspectives,backgrounds and cultures. We are therefore committed to creating aninclusive culture that celebrates the diversity of our employees,the patients we serve and communities we operate in. Together,we’re life changing. Novo Nordisk is an equal opportunity employer.

Qualified applicants will receive consideration for employmentwithout regard to race, ethnicity, color, religion, sex, genderidentity, sexual orientation, national origin, disability,protected veteran status or any other characteristic protected bylocal, state or federal laws, rules or regulations. If you areinterested in applying to Novo Nordisk and need special assistanceor an accommodation to apply, please call us at 1-855-411-5290.This contact is for accommodation requests only and cannot be usedto inquire about the status of applications.