Job summary

The security analyst works in coordination with all IT teams, and under the direction of the Director of IT Security to ensure the coherent execution of the Danaher and operating companies security strategy. Moreover, he/she provides informational and technical security expertise in order to support, ensure and enhance the current security posture of all assets IT managed operating companies. The Analyst may perform threat intelligence, monitoring, vulnerability management and/or incident response activities while challenging current processes and suggesting improvements or alternatives.

Job Scope

Handle Security Incident Management;

Perform daily security operations including vulnerability assessment and remediation, incident detection and response.

Review System process and setup in accordance to IT security policies.

Participate in internal investigations in accordance to established policies;

Ensure adherence to best practices in accordance with information security best practices, industry standards, and corporate policies and procedures.

Participate in User Awareness initiatives.

Collaborate in all aspect of threat intelligence activities and perform complete and efficient analyses;

Assess, analyze, categorize, classify and investigate security incidents;

Collect and document evidence needed for investigation and provide updates to the relevant stakeholders;

Perform lessons learned activities and documentation;

Track disclosed vulnerabilities and follow-up with the appropriate stakeholders to ensure appropriate patch deployment or mitigation measures;

Drive IT Security initiatives projects regionally

Ensure that security programs are in compliance with relevant laws

Provide 24x7 support as appropriate

Education

Bachelors Degree in Computer Sciences, cyber security or any related discipline.

Relevant security certifications (Security+, GSEC, SSCP, GCIH, etc.) are a plus

5+ years in audit and/or incident response and/or monitoring;

Demonstrated hands-on experience in incident response and coordination;

Skills

Experience in Vulnerability Scanning and Penetration Testing

Experience in Security or SIEM tools (eg Splunk, Nexpose etc)

Ability to work under pressure and adapt quickly to change;

Good problem-solving skills;

Ability to analyze and summarize complex data

Effectively collaborate with a variety of stakeholders from management to business and technical teams;

Proactive, methodic, and result-oriented;

Ability to write clear and concise documentation;

Adapt quickly to change;

Strong written and verbal communication skills;

Interpersonal and negotiation skills;

Good cultural approach to work with colleagues around the world;

Knowledge

English/Chinese language is required (oral/written)

Experience in malware analysis or computer forensic analysis is an asset

Experience in IT System Operation role before is a plus.

上班地址：长宁区