Senior Cybersecurity Analyst Job

Additional Location(s): N/A

Diversity – Innovation – Caring – Global Collaboration – Winning Spirit – High Performance

At Boston Scientific, we’ll give you the opportunity to harness all that’s within you by working in teams of diverse and high-performing employees, tackling some of the most important health industry challenges. With access to the latest tools, information and training, we’ll help you in advancing your skills and career. Here, you’ll be supported in progressing – whatever your ambitions.

About the role:

Boston Scientific is seeking a Senior Cybersecurity Analyst to be part of the IT Security, Network and Systems team. This individual will support all Preventice sites and services as part of the Boston Scientific organization, overseeing processes to ensure existing and new enterprise IT systems and services meet cybersecurity, privacy and risk requirements. Additionally, this role will be focused on monitoring and evaluating security alerts and controls, supporting audits for certification programs, risk and security assessments, assisting with resolving security issues, threat analysis, managing security applications and services, supporting core documentation and compliance efforts, and helping review and enhance the security and compliance programs.

Your responsibilities will include:

• Engineer, implement and monitor security measures for the protection of computer systems, networks, and information
• Design and execute security architectures for cloud and cloud/hybrid systems and services
• Maintain current knowledge of new security technologies and security threats; makes recommendations on improving existing solutions
• Configure and monitor various security devices and services, including proxy servers, Firewalls, ATP, IPS/IDS, and SIEM services
• Evaluate and recommend new security technologies, processes, and methodologies.
• Work with security vendors to establish and manage services
• Define, document, and enforce security standards
• Troubleshoot security alerts and investigates incidents
• Work with vendors and development team on security and application optimization
• Manage security projects
• Work within company’s configuration and change management policies and procedures
• Implement, maintain, and improve information security policies, standards, and procedures and controls to enable the business and assure compliance with relevant legal, regulatory, and contractual obligations
• Assist in the development/improvement of an enterprise Data Loss Prevention (DLP) strategy
• Provide subject matter expertise related to ISO, NIST, HIPAA, and other information security frameworks to business and IT partners as required
• Conduct information security risk assessments and security compliance audits throughout the IT organization
• Collaborate with business and IT leaders to ensure information security risk findings are reviewed and solutions are implemented
• Should have exposure of handling investigations of security incidents over cloud infrastructure as per the Cloud Security best practices
• Serve on call rotation to support the business needs
• Other duties as assigned

Required qualifications:

• Bachelor’s degree in Computer Science or Information Systems major related field experience with networking and IT Security
• 5+ years of experience leading enterprise-level responses for major information security incidents
• CISA/CISM or other Industry certification
• Performing security and risk management assessments
• Hands on experience working with Security Information Management, event management and incident response
• Experience in creating and maintaining security controls within cloud-based technologies, MSFT 365, Azure, Dynamics, and DevOps services
• Strong understanding of network and system security principles
• Hands-on experience with IT Security tools such as Anti-Malware, EDR, Web Proxy (Zscaler), Anti Phishing Mail Gateway, Vulnerability Scanning (Tenable), Firewalls (palo Alto, Cisco, Checkpoint) ATP/IPS/IDS
• Ability to read and understand system data, including, but not limited to, security event logs, Netflow and database structures
• Good communication skills and experience answering inquiries is a must

Preferred qualifications:

• Hands-on SIEM management experience (Splunk/Exabeam)
• Thorough understanding of the latest technologies, security principles, and protocols
• Exceptional problem-solving skills
• Ability to work in a fast-paced environment that requires proactively defining and managing various tasks and priorities concurrently
• Experience in developing, documenting, and maintaining security policies and procedures
• Experience with common Information Security management frameworks, such as: HIPAA, GDPR, SOX, ISO 27001/2, and NIST frameworks
• Strong team skills with ability to listen and build consensus and collaborate with business, IT and Cybersecurity groups
• Ability to multi-task, and the ability to coordinate and manage vulnerability management activities.
• Working knowledge of network/malware analysis is a plus

Requisition ID: 525751

As a leader in medical science for more than 40 years, we are committed to solving the challenges that matter most – united by a deep caring for human life. Our mission to advance science for life is about transforming lives through innovative medical solutions that improve patient lives, create value for our customers, and support our employees and the communities in which we operate. Now more than ever, we have a responsibility to apply those values to everything we do – as a global business and as a global corporate citizen.

So, choosing a career with Boston Scientific (NYSE: BSX) isn’t just business, it’s personal. And if you’re a natural problem-solver with the imagination, determination, and spirit to make a meaningful difference to people worldwide, we encourage you to apply and look forward to connecting with you!

At Boston Scientific, we recognize that nurturing a diverse and inclusive workplace helps us be more innovative and it is important in our work of advancing science for life and improving patient health. That is why we stand for inclusion, equality, and opportunity for all. By embracing the richness of our unique backgrounds and perspectives, we create a better, more rewarding place for our employees to work and reflect the patients, customers, and communities we serve. Boston Scientific is proud to be an equal opportunity and affirmative action employer.

Boston Scientific maintains a drug-free workplace. Pursuant to Va. Code § 2.2-4312 (2000), Boston Scientific is providing notification that the unlawful manufacture, sale, distribution, dispensation, possession, or use of a controlled substance or marijuana is prohibited in the workplace and that violations will result in disciplinary action up to and including termination.

Please be advised that certain US based positions, including without limitation field sales and service positions that call on hospitals and/or health care centers, require acceptable proof of COVID-19 vaccination status. Candidates will be notified during the interview and selection process if the role(s) for which they have applied require proof of vaccination as a condition of employment. Boston Scientific continues to evaluate its policies and protocols regarding the COVID-19 vaccine and will comply with all applicable state and federal law and healthcare credentialing requirements. As employees of the Company, you will be expected to meet the ongoing requirements for your roles, including any new requirements, should the Company’s policies or protocols change with regard to COVID-19 vaccination.