Cyber Security Operations Incident Response Analyst

Job Description

Our company is an innovative, global healthcare leader committed to improving health and well-being in 140 countries around the world.
We focus our research on conditions that affect millions of people around the world, such as Alzheimer's, Diabetes, and Cancer, while expanding our strengths in areas such as vaccines and biologics.
Join us in our mission to provide leading innovations and solutions for tomorrow.

Responsibilities

• Independently handle incident case investigation and drive to full remediation, including triage, investigation, containment and remediation.

• Assess the impact and risk of incidents and take appropriate actions according to defined procedures and standard practice.

• Utilize various security tools and technologies to detect and investigate cyber threats.

• Communicate and collaborate with other teams, including business liaisons, to ensure proper prioritization and resolution of detection cases.

• Contribute to the development and enhancement of security monitoring and detection capabilities by improving detection logic, filtering, aggregation and automation.

• Contribute to improvement of internal workflows and standard procedures.

• Actively build team's knowledgebase and support junior colleagues.

• Participate in build and development projects with various teams across IT function.

• Stay up to date with the latest security trends, vulnerabilities, attack techniques, and best practices.

Qualifications

Required

• Previous experience of at least 2 years in a security operations center (SOC) or similar role.

• Strong understanding of computer networks, operating systems, security tools, log sources, and attack vectors.

• Proven hands-on experience with some of industry standard security tools (in categories such as EDR, SIEM, sandboxes, proxies, firewalls, PAM).

• Comprehensive knowledge of security monitoring, incident investigation, incident response, and remediation methodologies.

• Scripting skills to solve data transformation tasks on ad hoc basis.

• Investigative mindset with excellent analytical and problem-solving skills.

• Strong communication skills, both written and verbal.

• Knowledge of cloud security concepts and technologies.

Preferred

• Industry relevant certifications (e.g. CompTIA Security, Certified Ethical Hacker, GIAC).

• University degree in IT field.

• Experience working in a global organization and large team.

• Familiarity with cyber regulatory frameworks and compliance requirements.

This document contains AI-generated content.

Required Skills:

Adaptability, Analytical Thinking, Cloud Security, Computer Network Operations, Cybersecurity, Cybersecurity Analytics, Cyber Threat Hunting, Cyber Threat Intelligence, Data Loss Prevention (DLP), Data Transformation, Detail-Oriented, Digital Forensics, Incident Investigations, Incident Response, Incident Response Management, Insider Threat Mitigation, Investigative Thinking, Log Analysis, Malware Analysis, Security Information and Event Management (SIEM), Security Monitoring, Security Operations, Team Collaboration, Vulnerability Assessments, Vulnerability Management

Preferred Skills:

Current Employees apply HERE

Current Contingent Workers apply HERE

Search Firm Representatives Please Read Carefully 
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company.  No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. 

Employee Status:

Regular

Relocation:

VISA Sponsorship:

Travel Requirements:

Flexible Work Arrangements:

Hybrid

Shift:

Valid Driving License:

Hazardous Material(s):

Job Posting End Date:

11/1/2025

*A job posting is effective until 11:59:59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date.

Requisition ID:R369702

---