Organon - Sr Specialist, Security Technology

Job Description

Organon is a Women’s Health Company that believes in a better and healthier every day for every woman! We are a passionate, global community of thousands dedicated to redefining the future of women’s health. Our mission is to deliver impactful medicines and solutions for a healthier every day. But what really makes it work at Organon is our people.

We’re looking for real, passionate team players, curious innovators, forward thinkers, empowered by the idea of shaping their career, and ready to bring their fire to embrace change and the opportunities it brings for progress. At Organon, you’ll get to enjoy the best of both worlds: the open, agile, collaborative culture of a start-up, and operating at the scale of a Fortune 500 company with an international footprint that serves people in more than 140 markets.

It’s going to be an exciting future—come be a part of it!

Position Overview

The Security Technology Analyst will be a member of the Security Technology team within the Business Technology Risk Management & Security (BTRMS) organization.

The position will primarily focus on a Continuous Security Control Verification (CSCV) program to ensure it is meeting the intended objectives of proactive assurance of our security technology posture, configuration and performance. The role will work closely with other members of the Security Technology team as well as the BTRMS Security Operations Centre (SOC) and various other Security Operations teams. Awareness of current threats and advanced malware tactics, along with various recommended mitigations will be a strong focus and serve as a key input into the CSCV program that this role will ensure. The ongoing production of metrics, statistics, KPIs and other indicators will be required so that all stakeholders within BTRMS, BTO and the business are aware of the current security technology posture along with required enhancements or recommended investments.

Primary Activities/ responsibilities include:

• Develop and maintain a sustainment plan for deployed security controls and products to ensure they are operated properly, provide intended risk reduction through effectiveness reviews, licensed properly, and reporting appropriate events into the SOC.

• Lead remediation activities resulting from penetration tests, red team tests, adversarial emulations and security control audits as led by other teams.

• Where required, perform active breach and attack simulation testing of key security controls.

• Research and ingest various external reports highlighting mitigations against current cyber security threats and attacks, and align to current security control strength – providing and tracking recommended mitigations.

• Collaborate with other IT Infrastructure leaders to ensure security technologies are properly configured and integrated into the infrastructure.

• Ensure proper licensing of security technology products.

• Ensure proper versioning of current products, and work with security technology tower leads to develop periodic upgrade plans.

• Oversee the production of metrics and KPIs for security controls in accordance with the intent of the CSCV program.

• Coordinate with vendors and partners to maintain and enhance security products where required

• When required, participate in projects to evolve and expand security technology

• Updates (or ensure the update of) documentation such as requirements, technical designs, configurations, drawings, and SDLC specific documents as necessary

• Other duties as assigned and related to Security Technology.

Your profile:

• BA/BS in Engineering, Computer Science, Information Security, or Information System or 5-8 years of cyber security experience

• Experience in or working with a SOC or Security Operations function, particularly with involvement in penetration tests, red team tests, breach and attack simulation.

• You have experience in one or more of the following tools: Zeek, Nmap, Wireshark, burp suite, john the ripper, Metasploit, other pentest tools

• A basic understanding of the mechanics and methods for advanced attacks.

• You have strong experience with 3 or more of the following security technology capabilities:

• Network Security – including NextGen Firewalls and NAC solutions

• Cloud Security – Understand of basic hosted cloud environments such as AWS and Azure, along with other CDN/WAF/DDoS, CASB, Cloud Security Posture Management capabilities

• Endpoint Security – familiarity with enterprise endpoint antimalware solutions and platforms, including NGAV and EDR Solutions

• Identity and Access Management – basic understanding of key capabilities such as Privileged Account Management, Identity Governance and Administration.

• Familiarity with Security Analytics solutions (e.g. Splunk) and best practices

• You are able to maintain active real-time awareness of the current cyber security threat landscape, and how it may impact the healthcare, pharmaceutical and manufacturing industries.

• You are able to produce clear charts, dashboards, and visuals to present IT system performance to various audiences (technical to executive leadership).

• And also, you are energetic, adaptable, willing to learn, and ready to grow in a new and evolving environment

Who We Are:

Organon delivers ingenious health solutions that enable people to live their best lives. We are a $6.5 billion global healthcare company focused on making a world of difference for women, their families and the communities they care for. We have an important portfolio and are growing it by investing in the unmet needs of Women’s Health, expanding access to leading biosimilars and touching lives with a diverse and trusted portfolio of health solutions. Our Vision is clear: A better and healthier every day for every woman.

Search Firm Representatives Please Read Carefully
Organon LLC, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails.

Employee Status:

Relocation:

VISA Sponsorship:

Travel Requirements:

Flexible Work Arrangements:

Shift:

Valid Driving License:

Hazardous Material(s):

Number of Openings:

Requisition ID:R508931