Jan 19, 2023

Job Description

15 Petabyte of data hosted, 49 countries supported, 15000 servers and thousands of devices to connect locations and businesses.

The CSOC Senior SOAR Engineer will be an integral part of the Novartis Cyber Security Operations Center (CSOC). The CSOC is an advanced global team passionate about the active defense against the most sophisticated cyber threats and attacks. The role will leverage a variety of tools and resources to support the proactive detection, investigation and mitigation of emerging and persistent threats impacting Novartis’ networks, systems, users and applications. This role will involve coordination and communication with technical and nontechnical teams, including security leadership and business stakeholders. As an experienced skilled engineer, this will also involve coaching and mentoring of more junior engineers.

Your responsibilities include, but are not limited to:

• Develop custom integrations to support CSOC workflow automation and orchestration.

• Define, design, evaluate, and improve business processes and playbooks integrating automation and orchestration.

• Integrate a variety of technology devices, applications, and datasets to support workflow orchestration and process automations.

• Gather requirements, plan, design, implement, and test automations with SOAR platform and surrounding technologies.

• Interface with engineering teams to design, test, and implement case management with workflow orchestration and automation.

• Define, design, evaluate, and enhance case management features including front end interface, backend data model, and technology integrations to support measurable, effective, and streamlined CSOC activities.

• Design, develop, and test scripts and other solutions to support CSOC mission and activities. Research and test new technologies and platforms; develop recommendations and improvement plans.

• Maintain a good understanding of Operational stakeholders (CSOC analysts, Cyber Center) needs in regard to activities and requirements.

Diversity & Inclusion / EEO

Novartis is committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.

Minimum Requirements

What you’ll bring to the role:
• 10 years and above experience in the areas of IT, IT infrastructure and IT risk management with 4+ years Python scripting or other similar coding experience.

• Understanding of SOAR architecture components, including technology integrations, common automation scenarios and solutions. Configuration files and relationship between GUI configuration and backend configuration file impact.

• Experience with Python and Splunk with experience planning, designing, developing, and testing automation solutions with SOAR platforms (Cortex, Phantom, FortiSOAR, etc).

• Experienced IT administration with broad and in-depth technical, analytical and conceptual skills and developing solutions with SIEM tools (Splunk, QRadar, Sentinel, etc.).

• Experience in reporting to and communicating with senior level management (with and without IT background, with and without in depth risk management background) on incident response topics.

• Excellent understanding and knowledge of general IT infrastructure technology and systems with proven experience to initiate and manage projects that will affect CSOC services and technologies.

• Good understanding of pharmaceutical industry and knowledge of business processes in a global pharmaceutical industry.

• Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills; and the ability to communicate information risk-related and incident response concepts to technical as well as nontechnical audiences.

Desirable Requirements:
• Professional information security certification, such as CISSP, CISM or ISO 27001 auditor / practitioner is preferred. Professional (information system) risk or audit certification such as CIA, CISA or CRISC is preferred.

• Preferably one or more Splunk certification.

Why consider Novartis?
766 million lives were touched by Novartis medicines in 2021, and while we’re proud of this, we know there is so much more we could do to help improve and extend people’s lives.

We believe new insights, perspectives and ground-breaking solutions can be found at the intersection of medical science and digital innovation. That a diverse, equitable and inclusive environment inspires new ways of working.

We believe our potential can thrive and grow in an unbossed culture underpinned by integrity, curiosity and flexibility. And we can reinvent what's possible, when we collaborate with courage to aggressively and ambitiously tackle the world’s toughest medical challenges. Because the greatest risk in life, is the risk of never trying!

Imagine what you could do here at Novartis!

India Accessibility and accommodation
Novartis is committed to working with and providing reasonable accommodation to individuals with disabilities. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the recruitment process, or in order to perform the essential functions of a position, please send an e-mail to [email protected] let us know the nature of your request and your contact information.

Join our Novartis Network:
If this role is not suitable to your experience or career goals but you wish to stay connected to hear more about Novartis and our career opportunities, join the Novartis Network here: https://talentnetwork.novartis.com/network
Hyderabad, AP
Technology Transformation
Full Time
careers default image

Associate Director - Cyber Security CSOC Engineer

Apply to Job Access Job Account