▷ Immediate Start Principal Cybersecurity Engineer

At Medtronic you can begin a life-long career of exploration and innovation while helping champion healthcare access and equity for all Youll lead with purpose breaking down barriers to innovation in a more connected compassionate world A Day in the Life CAREERS THAT CHANGE LIVES We are seeking a highly skilled Cyber Defense Specialist to join our dynamic cyber security team In this role you will be responsible for identifying analyzing and mitigating cyber threats to protect our organizations assets and data You will leverage your expertise in incident response to enhance our security posture and ensure the organization is well-prepared to respond to evolving threats Key activities include Incident Response Active incident response team member responsible for investigating and closing out security incidents Reporting Create and present reports dashboards and briefings to stakeholders at various levels within the organization Threat Analysis Monitor and analyze cyber threats and vulnerabilities from various sources including open-source intelligence industry reports and dark web forums Responsibilities may include the following and other duties may be assigned Monitor security alerts and identify potential incidents in real time from various sources SIEM intrusion detection systems Participate in the full incident Response lifecycle Perform investigations on complex information security incidents including determining root cause and lessons learned Develop implement and review processes procedures and playbooks for Security Incident Response and SecurityIncident Triage functions Apply Security Incident Response log analysis and forensic techniques i e forensic timelining on events and artifacts Participate in the development of custom detection rules partnering with the Anomaly Detection Program Manager for both common and targeted threats Provide support during post-incident reviews and help identify areas for process improvement Stay current on the latest cybersecurity threats vulnerabilities and trendsParticipate in incident response training and tabletop exercises to enhance skills and readinessServe as a technical leader to drive necessary changes and improvement to the incident response team and processParticipate as an incident response commander during major incidents in the organizationProvide incident containment eradication and recovery actions in coordination with affected teams Guide and mentor junior incident response analysts providing oversight training and support as needed Collaborate with internal and external teams including IT legal compliance and law enforcement to manage incident response and post-incident activities Lead the preparation of incident reports executive briefings and documentation ensuring clear communication of technical findings to non-technical stakeholders Engage with external partners such as vendors third-party security teams and industry information-sharing organizations to stay informed of the latest trends and tactics used by attackers Develop and refine incident response procedures playbooks and documentation to improve the efficiency and effectiveness of the incident response process Analyze the collected data to identify trends patterns and potential threats specific to the organization Create a summary report outlining actionable insights and recommended mitigation strategies for the security team and key stakeholders Meet with other incident response team to provide intelligence support for ongoing investigations Share insights about threat actors their methodologies and potential indicators of compromise IOCs relevant to the current incidentsCollaborate with the vulnerability management team to review the latest vulnerability assessments Discuss findings and recommend prioritization based on threat intelligence and potential impact on the organization Participate in on-call rotation for full coverage of incident response activitiesWork effectively with third part SOC partnersRespond to potential incidents associated reputational risk associated with malicious domainsEffectively investigate organizational incidents such as account takeovers zero-day attacks phishing campaignsWork with security awareness team and threat intelligence teams to provide develop organizational trainingPartner with internal and external teams Ability to negotiate with others to reach understanding or agreement Provide technical solutions to a wide range of difficult problems Solutions are imaginative thorough and practicable and consistent with organization objectives Work on developing or refining threat models for the organization This involves mapping out potential attack vectors assessing the organizations defenses and recommending improvements based on intelligence findings Contribute to creating training materials for employees on current cyber threats and best practices for maintaining security hygiene Plan upcoming awareness sessions to educate staff about recognizing phishing attempts and other social engineering tactics Collect logs from various sources such as SIEM Security Information and Event Management systems firewalls and endpoint detection and response EDR tools Foster a positive engaging and challenging team-focused xe2x80x98global work environment to ensure high productivity employee engagement and optimal performance Proactively engage with Medtronic business and Global IT partners to identify and define opportunities where the application of information technology can advance the strategic goals and objectives of Medtronic Act as role model by living and demonstrating the MedtronicEDUCATION REQUIREMENT Bachelors degreeYEARS OF EXPERIENCE 8 years of Information Security Experience Bachelors DegreeSPECIALIZED SKILLS OR EXPERIENCE Expert in a global enterprise on a defined cyber security teamExpert participating in incident response events and responseExpert briefing leadership and speaking to the organization broadlyExpert identifying key threats and vulnerabilities and reporting them out to the organizationFamiliarity with frameworks like MITRE ATT CK Diamond Model or Cyber Kill Chain which help in understanding and categorizing threatsBasic understanding of reverse engineering and static dynamic analysis of malware to identify behaviors and capabilities Skills in evaluating risks and vulnerabilities to help prioritize threats based on potential impact and likelihood Familiarity with cloud environments e g AWS Azure GCP and the specific threats associated with cloud security Understanding of social engineering tactics to help recognize and counteract human-targeted threats Physical Job RequirementsThe above statements are intended to describe the general nature and level of work being performed by employees assigned to this position but they are not an exhaustive list of all the required responsibilities and skills of this position Benefits CompensationMedtronic offers a competitive Salary and flexible Benefits Package A commitment to our employees lives at the core of our values We recognize their contributions They share in the success they help to create We offer a wide range of benefits resources and competitive compensation plans designed to support you at every career and life stage This position is eligible for a short-term incentive called the Medtronic Incentive Plan MIP About MedtronicWe lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions Our Mission xe2x80x94 to alleviate pain restore health and extend life xe2x80x94 unites a global team of 95 000 passionate people We are engineers at heartxe2x80x94 putting ambitious ideas to work to generate real solutions for real people From the R D lab to the factory floor to the conference room every one of us experiments creates builds improves and solves We have the talent diverse perspectives and guts to engineer the extraordinary Learn more about our business mission and our commitment to diversity