OxfordRecruiter Since 2001
the smart solution for Oxford jobs

Associate Security Analyst II, Incident Response

Company: AbbVie Inc.
Location: Lauderdale
Posted on: November 18, 2021

Job Description:

About AbbVie
AbbVie's mission is to discover and deliver innovative medicines that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives across several key therapeutic areas: immunology, oncology, neuroscience, eye care, virology, women's health and gastroenterology, in addition to products and services across its Allergan Aesthetics portfolio. For more information about AbbVie, please visit us at . on Twitter , Facebook , Instagram , YouTube and LinkedIn .

Role Description

AbbVie Information Security is looking for a highly motivated, talented defender to join the Cyber Security Incident Response Team (CSIRT). The Cyber Security Operations Center (CSOC) manages the initial investigation and response to security events, alerts, and threats, and works directly to augment the incident responders. This is a new capability within the Cyber Security Incident Response Team (CSIRT), working within the larger Cyber Security Operations (CSO) function. Join us as an Associate Security Analyst II, Incident Response to form the first line of defense against cyber-attacks and help our business to continue to have remarkable impacts on people's lives.

This is a highly technical role responsible for the initial triage of cyber security alerts, responding to confirmed cyber security incidents, escalation of cyber security incidents , as needed, and driving detection improvements whenever possible.

This entry-level role will assist in building your foundation of skills and knowledge in incident response and digital forensics and provides career path to more senior information security specializations.


  • Responding to cyber security alerts within defined SLAs
  • Contributing to key initiatives in order to enhance the Cyber Security Operations team's maturity and operational capabilities
  • Adhering to cyber security processes, procedures and other documentation while performing incident response duties
  • Analyzing security system logs, security tools, and available data sources to identify attacks against the enterprise and report on any irregularities, issues related to improper access patterns, trending, and event correlations and make suggestions for detection development and system tuning
  • Assisting in identifying monitoring/detection gaps and helping to drive them toward resolution
  • Escalating cyber security incidents to incident response analysts when appropriate
  • Identifying and actioning incident trends observed during triage and response activities
  • Assisting with the development, maintenance of, and training on technical documentation and Standard Operating Procedures (SOP) Qualifications

    Basic Qualifications
    • Basic understanding of system logging and auditing concepts
    • Basic understanding of security controls (i.e. anti-virus, EDR, IPS/IDS) and their capabilities
    • Ability to author original technical documentation
    • Working knowledge of diverse operating systems, networking protocols, systems administration, and security technologies
    • Familiarity with cyber security terminology and concepts, and basic understanding of the cyber threat landscape and attack vectors
    • Capability to learn new concepts and processes quickly, and adapt to a constantly changing environment
    • Demonstrated critical thinking, problem solving, and analytical skills with the ability to de-construct complex concepts
    • Ability to successfully interact with non-technical personnel
    • Ability to analyze and understand technical information
    • Education & Experience - Minimum of one of the following:
      • Two years in a specialized information security role
      • Bachelor's Degree or equivalent experience Desired Qualifications
        • Basic level of understanding of incident response terminology and methodologies
        • Basic level of understanding of common Windows OS artifacts and their relation to cyber security investigations
        • Knowledgeable on multiple technologies and systems that support CSOC and CSIRT services (e.g. SOAR, SIEM, IPS/IDS, EDR, etc.)
        • Knowledgeable on areas of Information Security, outside of Incident Response (e.g. Security Architecture, Security Engineering, Application Security, Vulnerability Management, Threat Intelligence, etc.)
        • Familiarity with cloud environment architecture
        • Experience with at least one programming language
        • Experience with at least one scripting language
        • Familiarity with change and incident management concepts and processes
        • Certifications consisting of any of the following: GIAC Forensic Examiner (GCFE), GIAC Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM), GIAC Network Forensic Analyst (GNFA), GIAC Advanced Smartphone Forensics (GASF), or other cybersecurity related certifications Significant Work Activities
          Continuous sitting for prolonged periods (more than 2 consecutive hours in an 8 hour day)
          Job Type
          Job Level Code
          Equal Employment Opportunity
          At AbbVie, we value bringing together individuals from diverse backgrounds to develop new and innovative solutions for patients. As an equal opportunity employer we do not discriminate on the basis of race, color, religion, national origin, age, sex (including pregnancy), physical or mental disability, medical condition, genetic information gender identity or expression, sexual orientation, marital status, protected veteran status, or any other legally protected characteristic.

Keywords: AbbVie Inc., Oxford , Associate Security Analyst II, Incident Response, Professions , Lauderdale, Mississippi

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest Mississippi jobs by following @recnetMS on Twitter!

Oxford RSS job feeds