Kuala Lumpur, Malaysia
9 days ago
Associate Analyst,IT Security

The Information Technology (IT) team plays a key role in providing business enablement throughout ResMed. We are focused on application, infrastructure, and user productivity solutions, with innovation, efficiency and security. Our goal is providing customer oriented agile delivery, effective business partnership and state-of-the-art technology solutions.

Let’s Talk About The Team

The ResMed Enterprise Security Operations team is focused on building a high performing Security Operations Center to monitor our diverse environment.  Combining cutting edge tools, existing and newly developing processes, and a security focused business, this provides an exciting environment to really make an impact.  As an ever evolving company, there’s a lot of opportunity to learn new tools, collaborate with other teams to solve problems, and have some freedom to investigate events.  The ResMed security team is a supportive environment that encourages learning, investing in new skills and asking questions.  We strive to create an environment where every team member is empowered to do the best work of their careers.


Let’s talk about the role

The primary role of Information Security Analyst is to work with our Global team of Security Analysts to monitor our security tools, investigate unusual findings, and respond to incidents within the business.

Keeps up to date on the latest security news and monitors for threats and zero day or other exploits followed by action and communicationMonitors information security related websites (US-CERT, SANS, Internet Storm Center, etc.) and other sources to stay up to date on current attacks and trendsWork with DevOps teams to provide Security guidance and feedbackMonitors and works Security Operations ticket queueMonitors and investigates alerts generated from ResMed’s security appliances, cloud services and various technologiesWorks with Infrastructure teams and other internal business units as required to promote Secure computing standards and monitoringCompiles and analyzes data for management reporting and metricsAs an active member of the team, monitor and process response for security events on a 24x7 basis.Analyzes potential impact of new threats and communicates risks to stakeholdersAssist with incident response as events are escalated, including triage, remediation and documentation.Investigate and document events to aid incident responders, managers and other SOC team members on security issues and the emergence of new threats.Evaluate SOC policies and procedures and recommend updates to management as appropriate.Partner with the security operations engineering team to improve tool usage and workflow, as well as with the advanced threats and assessment team to mature monitoring and response capabilities.Provides investigation findings to relevant business units to help improve information security postureContributes to security related business and InfoSec projects in both an advisory and hands on capacityContinually innovates on existing security posture, finding and identifying gaps, and defining a plan to close the identified gapsLeverage knowledge in multiple security disciplines, such as Windows, Unix, Linux, data loss prevention (DLP), endpoint controls, databases, wireless security and data networking, to offer global solutions for a complex heterogeneous environment.


Let’s talk about you

A passion for Security is more important than experience to us. We can teach the Security side of the role, we can't teach someone to be curious, inquisitive and wonder "why is that thing that way?"Demonstrates the ability to work extremely well under pressure while maintaining a professional image and approachAble to perform independent analysis and distill relevant findings and root causeStrong analytical writing skills to articulate complex ideas clearly and effectivelyTeam player with proven ability to work effectively with other business units, IT management and staff, vendors, and consultantsStrong communication skills such as planning and leading effective meetings and conducting structured interviews to collect informationAdvanced presentation skills to provide relevant and timely information to stakeholders and/or decision makers in an effective and professional manner


Required:

Minimum of 3 years IT Experience

Preferred:

AWS, Cloud or Software Development ExperienceIncident Response experience (either "General IT" or Security related)Experience with EDR, SIEM or CASB ToolsExperience working with security regulatory requirements and standards (such as NIST 800 series, ISO 2700x series, GLBA, FFIEC)

Joining us is more than saying “yes” to making the world a healthier place. It’s discovering a career that’s challenging, supportive and inspiring. Where a culture driven by excellence helps you not only meet your goals, but also create new ones. We focus on creating a diverse and inclusive culture, encouraging individual expression in the workplace and thrive on the innovative ideas this generates. If this sounds like the workplace for you, apply now! We commit to respond to every applicant.

Confirm your E-mail: Send Email
All Jobs from ResMed