Job Description

The Position

The Security Monitoring and Incident Response (MIR) team at Roche strives to keep our networks and users safe from constantly evolving threats. As a Senior Security Analyst, you will help protect proprietary information, patient data, keep computer systems clean and provide a safe information environment for our users. Combing through massive amounts of signals, you will have to identify signs of abuse or compromise of resources on-premise as well as in the cloud. All team members share a set of core responsibilities within the team.

Senior Security Analysts are responsible for monitoring security information, identifying threats, and showing initiative to defend all Roche information systems.

Responsibilities:

Security monitoring for a global environment

Develop protections, monitoring, and use cases

Identify and jointly implement hardening of systems

Forensic analysis of artifacts, including malware, related to security incidents

Mentor less experienced team members

Improve security posture of the enterprise

Communicate information security concepts and situations to senior management

Expand the detection and response capabilities of the team through integration or by creating your own tools

Minimum Qualifications:

Bachelor\xe2\x80\x99s in a relevant field OR 5+ years in the information security field

Ability to communicate information security-related concepts and situations to a non-technical audience

Work experience should have an emphasis on network and computer security

Scripting and programming skills (Python, Javascript, Go, Rust, \xe2\x80\xa6)

Familiarity with various defensive and offensive security toolsets

Demonstrated knowledge of operating systems (Linux, macOs, Windows)

Preferred Qualifications:

Network and Endpoint security monitoring experience in a large complex environment

Prior experience working in a SOC and large company environment

Demonstrated ability to analyze, triage, and escalate information security incidents

Knowledge of detection engineering and threat-hunting concepts

Knowledge of modern IAM controls and concepts (Zero Trust, Identity Aware Proxies, Active Directory Security, \xe2\x80\xa6)

Knowledge of Cloud security concepts (multi-cloud environments, CSPM, \xe2\x80\xa6)

A passion for the field of computer and network security

Fluent English

Public speaking experience

Who we are

At Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Working together, we\xe2\x80\x99ve become one of the world\xe2\x80\x99s leading research-focused healthcare groups. Our success is built on innovation, curiosity and diversity.

The Roche Services & Solutions as well as People Support Solutions organisations located in Kuala Lumpur provide end-to-end business solutions for Finance, Procurement, IT, Communications, People & Culture (Human Resources) and beyond to our Roche colleagues across the APAC region. Today Roche employs altogether around 1100 employees in Malaysia.

Roche is an Equal Opportunity Employer.

Roche