16 days old

Principal Cybersecurity Specialist - Incident Response Team (Remote)

Medtronic
Mounds View, MN 55112 Work Remotely
  • Job Code
    21000URZ
**This role may be filled with a US-based remote resource (work from home).

Bring your talents to an industry leader in medical technology and healthcare solutions - we're a market leader and growing every day. You can be proud to be a part of technologies that are rooted in our long history of mission-driven innovation. You will be empowered to shape your own career. We support your growth with the training, mentorship, and guidance you need to own your future success. Together, we can transform healthcare.

Join us for a career in IT that changes lives.

Medtronic is committed to fostering a diverse and inclusive culture. Check out the accomplishments of our Women in IT group! http://bit.ly/MedtronicWomeninIT

CAREERS THAT CHANGE LIVES
We believe that when people from different cultures, genders, and points of view come together, innovation is the result -and everyone wins. Medtronic walks the walk, creating an inclusive culture where you can thrive.

Participate in the detection, response, and remediation of Information Security incidents as part of Medtronic's CSIRT (Cyber Security Incident Response Team). Participate in Incident Response for security incidents of many kinds, including advanced, targeted, attacks on Medtronic. Partner with Command Center, SOC and CSIRT personnel as a subject matter expert in Incident Response. Frequently collaborate with internal and external partners.

A DAY IN THE LIFE
Participate in the full Incident Response Lifecycle. Perform investigations on information security and cyber incidents, including determining root cause and lessons learned.
Develop, implement, and review processes, procedures, and playbooks for Security Incident Response and Security Incident Triage functions.
Apply Security Incident Response forensic skills and techniques on events and artifacts.
Understand cybersecurity incident root cause and develop Incident Response Lessons Learned actions with the Findings Program Manager.
Participate in the development of custom detection rules, partnering with the Anomaly Detection Program Manager, for both common and targeted threats.
Maintain a strong code of confidentiality based on the sensitivity of the work being performed.
Recommend and execute implementation of security remediation while responding to security incidents, and to proactively prevent security incidents.
Partner with internal and external teams.
Provide technical solutions to a wide range of difficult problems. Solutions are imaginative, thorough, and practicable, and consistent with organization objectives.
Analyze complex issues and significantly improves, changes, or adapts existing methods.
Utilize a wide understanding of security tools, including advanced threat detection & response tools, SIEM technology, web-filtering, and other related tools. Maintain general knowledge of other related disciplines including servers, workstations, software, cloud, and network-related technology.
Apply mastery of in-depth knowledge in cyber or information security. Considered an internal expert.
Work under general direction. Independently determines and develops approach to solutions.
Establish inter-organizational and outside customer contacts. Represent the organization in providing solutions to difficult technical issues associated to information security incidents.

MUST HAVE (Minimum Qualifications)
High school diploma (or equivalent) and 12+ years of experience
OR
Bachelor's degree and 7+ years of experience or advanced degree and 5+ years of experience

NICE TO HAVE (Preferred Qualifications)
Previous Security Incident Response experience strongly preferred
Ability to work from a Medtronic Office OR remotely from your US-based home office
Experience with SIEM and log management tools (e.g., Splunk, McAfee Nitro, ELK, QRadar, ArcSight, Security Analytics)
Experience with incident detection and response tools (e.g., Full Packet Capture, Sandboxing, Endpoint Detection and Response)
Experience with On-Premise and Cloud architectures, engineering, and investigations
Experience with scripting languages (e.g., Python, PowerShell)
Experience writing custom rules and signatures (e.g., YARA, Snort)
Experience with digital forensics tools and techniques (e.g., FTK, EnCase, Redline, Volatility)
Experience with malware analysis and reversing tools (e.g., IDA Pro, Ghidra)
Relevant information security certifications, such as GCIH, GCFE, GCFA, OSCP, GREM, GNFA, GPEN, GCED, GCTI

ABOUT MEDTRONIC
Together, we can change healthcare worldwide. At Medtronic, we push the limits of what technology, therapies and services can do to help alleviate pain, restore health and extend life. We challenge ourselves and each other to make tomorrow better than yesterday. It is what makes this an exciting and rewarding place to be.

We want to accelerate and advance our ability to create meaningful innovations - but we will only succeed with the right people on our team. Let's work together to address universal healthcare needs and improve patients' lives. Help us shape the future.

PHYSICAL JOB REQUIREMENTS
The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position.

The physical demands described within the Day in the Life section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

EEO STATEMENT
It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.

This employer participates in the federal E-Verify program to confirm the identity and employment authorization of all newly hired employees. For further information about the E-Verify program, please click here:
http://www.uscis.gov/e-verify/employees

DISCLAIMER
The above statements are intended to describe the general nature and level of work being performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of employees assigned to this position.

Additional Information

  • Posting Date: Nov 19, 2021
  • Travel: No






Posted: 2021-11-21 Expires: 2021-12-20
Sponsored by:
ADP Logo
Sponsored by:
Bank of America Logo

Featured Jobs[ View All ]

Featured Employers

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Principal Cybersecurity Specialist - Incident Response Team (Remote)

Medtronic
Mounds View, MN 55112

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast