Cybersecurity Analyst III

Additional Location(s):  N/A

Diversity - Innovation - Caring - Global Collaboration - Winning Spirit - High Performance

At Boston Scientific, we’ll give you the opportunity to harness all that’s within you by working in teams of diverse and high-performing employees, tackling some of the most important health industry challenges. With access to the latest tools, information and training, we’ll help you in advancing your skills and career. Here, you’ll be supported in progressing – whatever your ambitions.       

About the role:
Are you passionate about cybersecurity and eager to tackle complex challenges? Do you have a home lab set up where you safely reverse-engineer malware or refine your understanding of cyber threat actor methodologies for fun? Have you built a segregated home network complete with directory services, a logging or SIEM solution, and virtual infrastructure to practice your craft?

This position as a Cybersecurity Analyst III is your opportunity to apply those skills and interests to real-world challenges, grow your expertise, and help enhance the security posture of a global organization. This role will be integral to identifying and mitigating cyber threats across the organization. This position will support incident detection and response activities, contribute to threat intelligence efforts, and help enhance the security posture of the organization. 

This is a hybrid (3 days onsite) role at our Marlborough, MA office. Relocation assistance is not available for this position and Boston Scientific will not offer sponsorship or take over sponsorship of an employment VISA for this position at this time. 

Your responsibilities will include:

•  Analyze security alerts and events from multiple sources, including Splunk, SIEM, EDR platforms, and user activity logs, to identify and mitigate threats in real-time.
• Detect, investigate, and respond to cybersecurity incidents across enterprise systems using EDR, SIEM, and SOAR tools.
• Conduct investigations into insider threat activities, utilizing behavioral analytics, data loss prevention (DLP) tools, and other monitoring solutions to detect anomalies and assess risks.
• Conduct endpoint and network forensic investigations to determine the root cause, impact, and remediation steps for cybersecurity incidents.
• Document and report findings from security incidents, insider threat investigations, and threat intelligence to key stakeholders, including technical and executive summaries.
• Work closely with other cybersecurity teams, HR, legal, and business units to manage insider threat investigations and overall security posture.
• Utilize threat intelligence feeds and platforms to identify potential risks, correlate data with incidents, and provide actionable insights.
• Proactively hunt for threats within the environment by analyzing logs, traffic, anomalous activity, and user behavior patterns.
• Leverage Security Orchestration, Automation, and Response (SOAR) platforms to automate workflows, improve incident response times, and reduce manual effort.
• Assist in developing and refining incident response playbooks, SOAR automation workflows, and insider threat response procedures.

Required qualifications: 

• 3+ years of experience in cybersecurity, with a strong emphasis on incident response 
• Technical Expertise: Proficiency with EDR tools and Splunk for log analysis and event correlation.
• SIEM Proficiency: Hands-on experience with a SIEM solution for alerting, monitoring, and investigative analysis.
• Incident Response: Demonstrated ability to manage and respond to complex cybersecurity incidents.
• Networking: Strong understanding of TCP/IP, firewalls, VPNs, IDS/IPS, and common attack vectors.
• Malware Analysis: Basic understanding of malware behavior and analysis techniques.
• Communication Skills: Ability to translate technical findings into business-relevant recommendations.

 
Preferred qualifications: 

• Certifications such as GCIH, GCIA, GCTI, GCFE/A, CEH, or equivalent are preferred but not required.
• The ability to perform thorough investigative analysis of potentially compromised assets in a forensically sound manner.
• Basic understanding of cloud & container security architecture
• Familiarity with investigative analysis and incident response, as they pertain to cloud environments
• Hands-on experience with SOAR tools to automate incident response processes.
• Experience working with threat intelligence platforms and feeds.
• Experience in threat hunting methodologies.
• Knowledge of scripting (Python, PowerShell) for automation and analysis.
• Familiarity with MITRE ATT&CK and other threat models.
• Familiar with DLP toolsets and best practices, from an Incident Response perspective
• Strong analytical and critical thinking skills.
• Excellent communication skills, capable of conveying complex security topics to technical and non-technical audiences.
• Ability to work both independently and as part of a team in high-pressure situations.
• A growth mindset oriented towards positivity, personal accountability, and excellence
   

Requisition ID: 597439

Minimum Salary: $77300 

Maximum Salary: $146800 

The anticipated compensation listed above and the value of core and optional employee benefits offered by Boston Scientific (BSC) – see www.bscbenefitsconnect.com--will vary based on actual location of the position and other pertinent factors considered in determining actual compensation for the role. Compensation will be commensurate with demonstrable level of experience and training, pertinent education including licensure and certifications, among other relevant business or organizational needs. At BSC, it is not typical for an individual to be hired near the bottom or top of the anticipated salary range listed above.

Compensation for non-exempt (hourly), non-sales roles may also include variable compensation from time to time (e.g., any overtime and shift differential) and annual bonus target (subject to plan eligibility and other requirements).

Compensation for exempt, non-sales roles may also include variable compensation, i.e., annual bonus target and long-term incentives (subject to plan eligibility and other requirements).

For MA positions: It is unlawful to require or administer a lie detector test for employment. Violators are subject to criminal penalties and civil liability.

As a leader in medical science for more than 40 years, we are committed to solving the challenges that matter most – united by a deep caring for human life. Our mission to advance science for life is about transforming lives through innovative medical solutions that improve patient lives, create value for our customers, and support our employees and the communities in which we operate. Now more than ever, we have a responsibility to apply those values to everything we do – as a global business and as a global corporate citizen.

So, choosing a career with Boston Scientific (NYSE: BSX) isn’t just business, it’s personal. And if you’re a natural problem-solver with the imagination, determination, and spirit to make a meaningful difference to people worldwide, we encourage you to apply and look forward to connecting with you!

At Boston Scientific, we recognize that nurturing a diverse and inclusive workplace helps us be more innovative and it is important in our work of advancing science for life and improving patient health. That is why we stand for inclusion, equality, and opportunity for all. By embracing the richness of our unique backgrounds and perspectives, we create a better, more rewarding place for our employees to work and reflect the patients, customers, and communities we serve. 

Boston Scientific Corporation has been and will continue to be an equal opportunity employer. To ensure full implementation of its equal employment policy, the Company will continue to take steps to assure that recruitment, hiring, assignment, promotion, compensation, and all other personnel decisions are made and administered without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identify, gender expression, veteran status, age, mental or physical disability, genetic information or any other protected class.

Please be advised that certain US based positions, including without limitation field sales and service positions that call on hospitals and/or health care centers, require acceptable proof of COVID-19 vaccination status.  Candidates will be notified during the interview and selection process if the role(s) for which they have applied require proof of vaccination as a condition of employment.  Boston Scientific continues to evaluate its policies and protocols regarding the COVID-19 vaccine and will comply with all applicable state and federal law and healthcare credentialing requirements.   As employees of the Company, you will be expected to meet the ongoing requirements for your roles, including any new requirements, should the Company’s policies or protocols change with regard to COVID-19 vaccination.