IT Security Analyst

Role Summary

IT Security Analyst for a global diversified pharmaceutical company. Responsible for hands-on operation of security technologies and processes to protect the global infrastructure, with emphasis on daily monitoring, technical investigations, tool maintenance, and coordination with IT and security peers.

Responsibilities

• Maintain, tune, and optimize security tools, including Chronicle SIEM, GRIP, Cloud Access Protection, EDR, and vulnerability management systems. Ensure that event correlation, alerting, and data feeds are working as intended.
• Review logs, alerts, and system telemetry on a daily basis to detect suspicious or abnormal activity. Perform initial and mid-level investigations into potential threats, with emphasis on identifying patterns, insider risks, and misuse of systems.
• Provide technical input during incident investigations by gathering evidence, analyzing attacker methods, and implementing containment or remediation steps as directed by leadership. Support incident response workflows but do not own the incident lifecycle.
• Conduct investigations into anomalous user activity and potential insider threats, documenting findings and escalating appropriately.
• Assist in monitoring and responding to threats targeting operational and manufacturing technology environments, coordinating with OT and IT teams for vulnerability mitigation.
• Support the engineering, deployment, and operationalization of external threat management tools. Provide technical feedback on tool effectiveness and detection improvements.
• Work closely with IT and security teams to ensure security controls are consistently applied. Document runbooks, playbooks, and technical procedures for recurring tasks.
• Assist with evidence gathering and readiness for security audits and regulatory requirements (HIPAA, PCI, etc.).

Qualifications

• 35 years of experience in cybersecurity operations, monitoring, and incident support
• Hands-on experience with Chronicle SIEM, GRIP, Cloud Access Protection tools, EDR, and vulnerability management solutions
• Familiarity with operational technology environments and related security concerns
• Experience conducting insider risk investigations and supporting incident response teams
• Technical understanding of encryption, ports, protocols, services, access control, and application/network security
• Knowledge of the threat landscape, attacker techniques, and detection methodologies
• Ability to conduct root cause analysis and clearly document investigation findings
• Basic scripting ability (PowerShell, Python) to support analysis and automation
• Strong communication skills to collaborate with peers and accurately document technical processes
• Ability to maintain confidentiality and compliance with applicable regulations
• Hybrid work schedule, 3 days in the Bridgewater, NJ office and 2 days remote

Skills

• Security operations
• Threat monitoring and analysis
• Incident response support
• Insider risk investigations
• Operational technology security
• External threat management
• Documentation and runbook development
• Regulatory compliance (HIPAA, PCI)
• Communication and collaboration

Education

• Not specified

Additional Requirements

• Hybrid work arrangement: 3 days in office, 2 days remote