Cyber Incident Response Engineer

Do you want to be part of an inclusive team that works to develop innovative therapies for patients? Every day, we are driven to develop and deliver innovative and effective new medicines to patients and physicians. If you want to be part of this exciting work, you belong at Astellas!Astellas Pharma Inc. is a pharmaceutical company conducting business in more than 70 countries around the world. We are committed to turning innovative science into medical solutions that bring value and hope to patients and their families. Keeping our focus on addressing unmet medical needs and conducting our business with ethics and integrity enables us to improve the health of people throughout the world. For more information on Astellas, please visit our website at www.astellas.com .This is a remote position and is based in India. Remote work from certain states may be permitted in accordance with Astellas’ Responsible Flexibility Guidelines. Candidates interested in remote work are encouraged to apply.Description:Astellas is seeking an experienced Incident Response Engineer who will be responsible for the use of the incident and problem management processes as well as establishing control and direction of various incidents and service desk tickets. This global role will assist an outsourced SOC to develop its skills, collaboration, and alerting.Essential Job Duties:Actively respond to security events from detection through to resolution, including the rollout of solutions and mitigations to prevent a recurrence.Build out and develop the tools and foundations for security incident alerting, management, communication, and response. Maintain incident response documentation, participate in post incident reviews, and contribute to incident reports.Participate in the on-call roster for security incident responseAssist in the promotion of a security mindset and the establishment of best practices with across a wide range of security areas: secure development, cryptography, network security, security operations, and incident responseIdentify trends, research, new technologies, and emerging threats models, which may impact the business plus contribute to projects that enhance the security positioning of the business Required Skills and ExperienceFirst and foremost, have a curious detective mindset and be driven to solve ambiguous problems with simple solutionsProven experience in Security - Engineering, Operations, Incident Response, Analysis, or Threat ResearchExposure to the cloud! Ideally AWS, but GCP or Azure would be greatDocumentation, communication, and stakeholder management skills; the ability to work alongside technical and non-technical colleaguesThe ability to prioritize multiple tasks and projects in a dynamic environmentAbility to work under pressure and to remain calm in times of crisisRequired Qualifications:Experience of building dashboards using query languages (SQL, KQL or JQL)Experience of running cyber incidents and developing logic/use case for SIEM and SOARCertified Information Security Manager (CISM), Certified Information System Security professional (CISSP) or other industry recognised qualificationAble to demonstrate knowledge of the attack kill chainPreferred Qualifications:CISM• LI-CH1Category TechXAstellas is committed to equality of opportunity in all aspects of employment.EOE including Disability/Protected Veterans