About the job
Role Summary
The Enterprise Platforms & Security (EP&S) team delivers the following capabilities for Pfizer. Business application platforms supporting Pfizer’s enterprise application and critical business processes. Infrastructure allowing business traffic to travel where it needs to go, internally and externally, along with the appropriate access controls. EP&S secures Pfizer’s most important information assets through world class controls and protections and enables Pfizer’s business results by making security an enabler and not a roadblock to achieving business results.
The Global Information Security (GIS) team secures Pfizer’s most important information assets through world class talent, top security controls and an empowered culture that serves to enable Pfizer’s mission of delivering breakthroughs that change patients’ lives.
The Information Security Awareness and Readiness team works to ensure a vibrant security culture in Pfizer and that all colleagues are aware of the threats Pfizer faces and that all are prepared to defend against them. We do this through readiness evaluations, assessments, direct to colleague marketing and awareness delivery, maintenance of a company website and mobile application, communications directly with divisional leaders and management, and utilization of a network of site-based Information Security Officers who volunteer their time to help as a conduit between GIS and the colleague workforce.
The Information Security Readiness Analyst leverages their knowledge of cybersecurity and analytics to monitor the overall readiness of Pfizer to respond to threats. The Readiness Analyst accomplishes this through data evaluation of human behaviors through the maintenance and growth of a Culture Score app, project managing readiness exercises with the business, analyzing and visualizing site assessment results, and preparing metrics and scorecards so that decisions can be made about Pfizer’s readiness and security education needs. This role also supports Pfizer’s Microsoft Information Protection (MIP) solution, the sensitivity labels, and business workflows to enable document and email labeling. The Readiness Analyst also supports the phishing platform and other assessment and simulation-based activities to measure and assess Pfizer’s cyber readiness.
Role Responsibilities
- Design, maintain and enhance the culture score app within Splunk
- Leverage culture score data to collaborate with the Enterprise Awareness manager and security champions on educational needs of Pfizer
- Use various views and data mining techniques to analyze data to find security culture trends based on geography, business division and business function
- Project manage readiness assessments, tabletop exercises, and simulations, then analyze results using visual analytics tools such as tableau to highlight gaps and work with the business to ensure gap closure
- Provide metrics on assessment performance and outcomes of assessment activities
- Support the Microsoft Information Protection (MIP) labels and encryption controls program
- Establish sub-labels for business units as applicable
- Acquire and maintain knowledge of the cyber threat landscape and information security best practices through ongoing professional education, GISSP rotations and independent research
- Participate in team projects centered around the ISAR mission
- Manage ISAR Mailboxes
- Support the ISAR team with other duties as assigned
Basic Qualifications
- BS in Information Security, Computer Sciences, Information Security, Information Systems, Marketing, Visual Design, User Experience Design, Web/Graphic Design, Leadership, or Education.
- 4 years of professional experience in a corporate environment supporting information security, system administration or network operation functions.
- Direct, demonstrable experience with running splunk queries and creating splunk dashboards
- Direct and demonstrable experience with using tableau to visualize data
- Other visual analytic and reporting tools to assist with making business decisions regarding security needs
- Understanding of classification systems and handling sensitive information securely
- Understanding cybersecurity concepts and technologies
- Understanding cybersecurity in large enterprises
- Creative thinker with strong attention to detail
- Ability to provide concise and accurate communications (both verbal and written) in produced awareness materials.
- Ability to communicate and establish rapport with a global leadership, colleagues and divisional peers, leaders and colleagues.
- Commitment to training, self-study and maintaining proficiency in the learning management and information/cyber security domains.
Preferred Qualifications
- 2-4 years of supporting readiness assessments, tabletop exercises, and simulations
- Advanced levels of splunk and tableau knowledge
- Experience in Microsoft Information Protection administration
- Experience with inspiring a volunteer workforce to complete tasks for the benefit of Pfizer’s security culture.
- Security certifications such as GCIA, GCIH, GCTI, CEH, Security+, CISSP or similar
Physical/Mental Requirements
Desk Job
Non-standard Work Schedule, Travel Or Environment Requirements
5% Travel
Last day to apply : March 15th 2022
Pfizer requires all U.S. new hires to be fully vaccinated for COVID-19 prior to the first date of employment. As required by applicable law, Pfizer will consider requests for Reasonable Accommodations.
Sunshine Act
Pfizer reports payments and other transfers of value to health care providers as required by federal and state transparency laws and implementing regulations. These laws and regulations require Pfizer to provide government agencies with information such as a health care provider’s name, address and the type of payments or other value received, generally for public disclosure. Subject to further legal review and statutory or regulatory clarification, which Pfizer intends to pursue, reimbursement of recruiting expenses for licensed physicians may constitute a reportable transfer of value under the federal transparency law commonly known as the Sunshine Act. Therefore, if you are a licensed physician who incurs recruiting expenses as a result of interviewing with Pfizer that we pay or reimburse, your name, address and the amount of payments made currently will be reported to the government. If you have questions regarding this matter, please do not hesitate to contact your Talent Acquisition representative.
EEO & Employment Eligibility
Pfizer is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status. Pfizer also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA. Pfizer is an E-Verify employer.
Information & Business Tech
More Information
- Address Collegeville, PA, USA
- Salary Offer $50.000 ~ $100.000
- Experience Level Senior
- Total Years Experience 0-5