Make your mark for patients
To strengthen our Information Technology team, based at the HQ, in Brussels, Belgium we are looking for a talented individual to fill the position of: Cyber Incident Response Analyst – OT
You will be joining the “ Cyber Detection and Response” team, which is part of “ I T Security, Risk management, Data Privacy and Compliance “, and report to the Head of Cyber Detection and Response.
As a Cyber Incident Response Analyst specializing in Operational Technology (OT), you will be at the forefront of defending our critical infrastructure. Your primary responsibility will be to identify, analyze, and respond to cyber threats targeting our OT environment, which includes systems and networks used to monitor and control production processes. You will play a crucial role in ensuring the safety and reliability of our operations by developing and implementing incident response strategies, collaborating with cross-functional teams, and leveraging advanced threat intelligence.
Who You'll Work With
1. SOC Team: Collaborate closely with our Security Operations Center (SOC) to ensure seamless incident detection, escalation, and response.
2. Automation Teams: Work alongside the automation teams to understand and monitor the interfaces between IT and OT systems.
3. External Incident Response Providers: Coordinate with third-party incident response experts to supplement internal capabilities during major incidents.
4. IT Incident Management: Jointly coordinate Cyber Security Incidents
5. Business Stakeholders: Engage with various business units to ensure alignment of security practices with business goals and to provide updates on incident status and resolution.
What You'll Do
6. Incident Response Plan Creation: Develop, maintain, and enhance incident response plans specifically tailored for OT environments.
7. Incident Analysis: Conduct thorough investigations of security incidents in OT systems, determine the root cause, and suggest containment and recovery actions.
8. Expert Support to SOC Team: Provide expert-level support to the SOC team in the monitoring, analysis, and resolution of security alerts related to OT systems. Offer guidance on complex incidents and advanced threats.
9. Detection Engineering: Work with detection engineers to design and refine detection strategies and tools for OT threats. Implement a collection management framework to identify and onboard critical datasets in the OT environment, improving security monitoring and enabling incident response processes.
10. Threat Intelligence: Gather, analyze, and disseminate threat intelligence related to OT environments, staying ahead of emerging threats.
11. Reporting: Prepare detailed reports on security incidents, including the nature, impact, and response actions taken. Communicate findings and recommendations to technical and non-technical stakeholders.
Interested?
For this role we’re looking for the following education, experience and skills
12. Education: Hold a “bachelor’s degree in computer science” or possess a proven professional track record related to the role, with skills and capabilities being equally important as formal education.
13. Technical Proficiency: Experience with OT systems (SCADA, DCS, PLCs), network packet analysis, OT visibility tools (e.g., Nozomi, Claroty, Dragos), and industrial communication protocols.
14. Frameworks and Standards: Knowledge of relevant frameworks and standards such as PICERL, NIST-800-61, IEC62443, Mitre ATT&CK, and the Purdue model.
15. Analytical Skills: Strong abilities in incident and log analysis, root cause determination, and threat intelligence.
16. Problem-Solving: Capability to handle complex, high-pressure situations effectively.
17. Communication: Excellent interpersonal and documentation skills for effective collaboration with diverse teams.
Why you should apply
At UCB, we strive to attract passionate and outstanding talents who thrive on change and are ready to bring real value to patients. Working for us you’ll discover a place where you can grow and express your full potential. We place an emphasis on innovation, collaboration, and impact. Through meaningful recognition and a motivating work atmosphere, we aim to provide an optimal experience by caring about and valuing our employees – just as we do for the patients we serve.
If you believe you are the perfect match to join us on our pioneering adventure, then we invite you to apply and tell us more about your profile and motivation.
Are you ready to ‘go beyond’ to create value and make your mark for patients? If this sounds like you, then we would love to hear from you!