Job Description Summary

To improve the security of products and solutions by design, in use and through partnership. This person will lead information security communications, processes, timelines and progress for specific incidents relating to the internal BD network, BD products, and BD’s Operations and Supply Chain at customer sites or with security researchers.

The information security incident response analyst will work cross-functionally with product R&D, Quality, Service, Legal, IT, Regulatory Affairs and Information Security by supporting and execution of the incident response tasks from confirmation to remediation and/or mitigation. You must be able to work with a high degree of independence and effectively interact with associates from entry level tech to Executive Vice Presidents. You have previous incident response experience and are comfortable providing fact-based reports to various levels of the organization within a fast-paced environment.

You may work with product, manufacturing and/or enterprise teams and functional groups on determining objectives, scope, analysis, actions, and timeline for responding to security incidents with BD products at customer sites and with security researchers. The information security incident response specialist may facilitate remote or emergency on-site technical analysis in addition to focusing product teams on short-term and long-term response, remediation and communication.

In this role, you will manage key timelines, dependencies, and cross-functional organization in relation to security incidents and vulnerabilities. You will also be accountable to effectively communicate program/project updates to cross-functional management teams. A strong combination of technical understanding, communication and documentation is vital to the success of this role.

Job Description

The following duties and responsibilities are intended to be representative of the work performed by the incumbent(s) in this position and are not all-inclusive.  The omission of a specific duty or responsibility will not preclude it from the position.

• Ensure coordination of cross-functional teams to ensure timely and effective incident response, following BD’s internal product security policy and procedures
• Act as a relations manager between security operation groups and liaison with Privacy for ongoing program development.
• Formalize and document actionable output and long-term change from incident response incidents and vulnerabilities
• Provide subject matter expertise to BD’s existing Security Operations Center (SOC) function as it relates to BD’s manufacturing, enterprise and product systems/products.
• Serve as liaison between technical teams and the business, ensuring clear and concise communication to management teams
• Creates, organizes, conducts, and maintains documentation for internal information security table-top exercises and training at various locations
• Responds to customer requests for information and communication in a timely and thorough manner, ensuring accuracy of information security requests
• Participation in after-hours incidents when required, including international hours
• Directly contribute to continuous improvement efforts by providing actionable output from daily operational work to drive maturity enhancements in the detection of threats to BD.
• Assist with additional projects as needed

Basic Qualifications:

• Strong leadership and influence management skills and the ability to function effectively in large matrix organizations.
• Strong communication and project management skills
• Requires a highly motivated, dynamic and customer-centric associate who thrives in a challenging and changing environment
• Working knowledge of crisis management communication, incident response and handling methodologies, NIST cybersecurity standards and FDA cybersecurity guidance
• Effective meeting management and group facilitation skills
• Strong background with cybersecurity operations and industrial control systems, as well as a clear understanding of its relevance to manufacturing, supply chain operations and information technology.
• Able and willing to travel up to 15%

Education and/or Experience:

• A minimum of a bachelor’s degree required. Ideal candidate will have a degree in crisis management, communication, project coordination, or computer science
• A minimum of 3-5 years of experience in incident response or proven ability to operate cross functionally to execute on business wide initiatives
• Excellent communication skills; both oral and written
• Knowledge: Cybersecurity Incident Response, Project management, Product Development, Healthcare
• Preferred Certifications: CERT-Certified Computer Security Incident Handler Certification, CISSP, HCISSP

Becton, Dickinson and Company is an Equal Opportunity/Affirmative Action Employer. We do not unlawfully discriminate on the basis of race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic or civil union status, familial status, affectional or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, or any other protected status.

#LI-PRO

Primary Work Location

USA NJ - Franklin Lakes

Additional Locations

Work Shift