The Global Information Security (GIS) organization delivers proactive cyber defense for the global Pfizer enterprise. Our mission is to secure all of Pfizer’s information assets ranging from the manufacturing floor to the core data centers and out to the patient facing solutions. We achieve this mission through a team of world-class talent, utilizing top-tier technologies, advanced analytics and the promotion of a cybersecurity ownership culture across the company.

The Cyber Intrusion Analyst will report into the Intrusion Detection & Analysis (IDA) team and will focus on responding to network security events and building a deep understanding of cybersecurity attacks against Pfizer.The Cyber Intrusion Analyst will be expected to lead event correlation across large datasets, perform and drive complete attack lifecycle analysis, develop remediation plans, implement proactive and reactive countermeasures, and create innovative solutions to the security issues that face the Pfizer environment. The Cyber Intrusion Analyst will have demonstrated aptitude to rapidly apply expertise in a complex business and technical environment with previous experience in forensic investigations, analysis, and incident response. Strong business communication and project management skills are required to maintain effective internal and customer relationships.

Role Responsibilities

• Leveraging security data from cybersecurity sensors (EDR, IDS, routers, SIEM, firewalls, hosts) and external sources (Industry portals, threat intel feeds, etc.) to identify high priority alerts and perform attack life-cycle analysis to develop/implement proactive mitigations.

• Investigate cybersecurity incidents to be able to determine impact, understanding of threat, and recommended mitigation/remediation

• Forensic analysis; analysis of compromised machines and analysis of network traffic and log data.

• Malware analysis

• Signature/alert development to help catch threats to Pfizer’s computers and network (e.g. Yara, SNORT, etc.)

• Commitment to training, self-study and maintaining proficiency in the technical cyber security domain.

• The analyst must be able to work well with a team, including cross-unit and cross-divisional teams, and must be able to maintain poise and composure in difficult situations, with a professional attitude at all times.

Basic Qualifications

• Applicant must have a Bachelor’s degree in computer sciences, Information Security, Information Systems, Engineering, Sciences, or related field; OR Associate's degree with four years of relevant experience; OR six years of relevant experience with a high school diploma or equivalent.

• Entry level understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.

• Entry level understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques, and procedures (TTPs)

• Entry level knowledge of the Windows operating system, system utilities, admin functions

• Participation in cyber security challenges (red team / blue team; capture the flag; etc.

• Ability to interpret log data and draw analytical conclusions

• Entry experience with open-source security analysis tools such as Wireshark, SNORT, Splunk, Kali Linux, Sift, REMnux etc.

• Entry experience with Computer programming and scripting languages such as C, Python, Java, etc.

• Ability to proactively solve complex problems both individually and as part of a team

• Effective oral, written, and interpersonal communications skills are required as well as organizational, planning, and administrative abilities and the ability to coordinate multiple complex projects simultaneously.

• Demonstrated experience in an agile work environment possessing qualities such as a collaborative mindset, adaptability to change, and a proactive problem-solving approach.

PHYSICAL/MENTAL REQUIREMENTS

Desk job, no specific physical / mental requirements.

NON-STANDARD WORK SCHEDULE, TRAVEL OR ENVIRONMENT REQUIREMENTS

Standard work schedule & occasional travel required (less than 5%).

Other Job Details:

• Last Date to Apply for Job: March 7, 2024

• Work Location Assignment:Must be able to work from assigned Pfizer office 2-3 days per week, or as needed by the business.

The annual base salary for this position ranges from $54,700.00 to $91,100.00. In addition, this position is eligible for participation in Pfizer’s Global Performance Plan with a bonus target of 7.5% of the base salary. We offer comprehensive and generous benefits and programs to help our colleagues lead healthy lives and to support each of life’s moments. Benefits offered include a 401(k) plan with Pfizer Matching Contributions and an additional Pfizer Retirement Savings Contribution, paid vacation, holiday and personal days, paid caregiver/parental and medical leave, and health benefits to include medical, prescription drug, dental and vision coverage. Learn more at Pfizer Candidate Site – U.S. Benefits | (uscandidates.mypfizerbenefits.com). Pfizer compensation structures and benefit packages are aligned based on the location of hire. The United States salary range provided does not apply to Tampa, FL or any location outside of the United States.

Relocation assistance may be available based on business needs and/or eligibility.

Information & Business Tech

#LI-PFE