As an Attack Surface Analyst, you will be an integral part of our cybersecurity team, focusing on identifying and mitigating cyber vulnerabilities that may affect our medical device products, enterprise IT, and manufacturing environments. You will work in a dynamic and complex environment to protect sensitive data and ensure the security and integrity of our products and services.
Job Description
We are the makers of possible
BD is one of the largest global medical technology companies in the world. Advancing the world of health ™ is our Purpose, and it's no small feat. It takes the imagination and passion of all of us-from design and engineering to the manufacturing and marketing of our billions of MedTech products per year-to look at the impossible and find transformative solutions that turn dreams into possibilities.
We believe that the human element, across our global teams, is what allows us to continually evolve. Join us and discover an environment in which you'll be supported to learn, grow and become your best self. Become a maker of possible with us.
Strategic Responsibilities
% of Work
Primary Duties / Responsibilities
90% - In partnership with Security Operations teams, evaluate BD's attack surface for cybersecurity risk and engage stakeholders in the identification and remediation of that risk.
10% - Professional development in current cybersecurity best practices, OSINT trends, and training.
Degree of Accountability:
Accountable for setting personal work direction and completion of work tasks.
Actively participates in Information Security projects/initiatives.
Champions the protection of BD's intellectual property and information assets.
Financial Impact:
Member of the Cyber Fusion Team to identify and minimize risk and impact to market share and brand reputational loss.
Quality Impact:
Demonstrates adherence to BD's Quality Standards by driving continuous improvement within assigned responsibilities while adhering to applicable regulatory requirements.
Cost Impact:
Encourages and supports continuous improvement to drive improved maturity in operational effectiveness and return on investment for the Security Operations function.
Operational Responsibilities
Vulnerability Identification and Assessment : Regularly conduct comprehensive vulnerability assessments across various platforms, including medical devices, IT infrastructure, and manufacturing systems.
Threat Analysis : Stay updated with the latest cybersecurity threats and trends, especially those impacting the healthcare and manufacturing sectors.
Alerting and Reporting : Promptly alert relevant teams about potential vulnerabilities and provide detailed reports on findings, risks, and remediation recommendations.
Collaboration with Development Teams : Work closely with product development teams to ensure security is integrated into the design of medical devices and software.
Incident Response Support : Assist in developing and refining incident response protocols. Actively participate in incident response activities when necessary.
Compliance and Standards Adherence : Ensure compliance with relevant industry standards and regulations, such as HIPAA, FDA guidelines for medical devices, and ISO standards.
Security Awareness Training : Conduct training and awareness sessions for stakeholders on best practices for cybersecurity, particularly focusing on threats to BD, BD's customers, and their patients. Communicate technical information to non-technical audiences and advises associates on Cybersecurity issues and approaches.
Continuous Improvement : Continuously seek to improve operational processes and tools.
Education and Experience:
Qualifications
Bachelor's degree in computer science, Information Technology, Cybersecurity, or at least five years' experience in a related field.
Minimum of 3 years of experience in cybersecurity, with a focus on vulnerability analysis and security operations.
Strong understanding of networking and networking protocols, network security and identification of system vulnerabilities.
Hands-on skills must include scripting or API integrations using common scripting languages such as Python or PowerShell, as well as popular operating systems including Windows, MacOS, and Linux variants.
Working knowledge of common security tools such as Qualys, Tenable, LogRhythm, FireEye.
Experience with medical device cybersecurity, research & development, and manufacturing environments is highly desirable.
Familiarity with regulatory standards such as HIPAA, FDA, and ISO.
Excellent analytical and problem-solving skills using common tools such as Microsoft Excel analytical features.
At BD, we prioritize on-site collaboration because we believe it fosters creativity, innovation, and effective problem-solving, which are essential in the fast-paced healthcare industry. For most roles, we require a minimum of 4 days of in-office presence per week to maintain our culture of excellence and ensure smooth operations, while also recognizing the importance of flexibility and work-life balance. Remote or field-based positions will have different workplace arrangements which will be indicated in the job posting.
For certain roles at BD, employment is contingent upon the Company's receipt of sufficient proof that you are fully vaccinated against COVID-19. In some locations, testing for COVID-19 may be available and/or required. Consistent with BD's Workplace Accommodations Policy, requests for accommodation will be considered pursuant to applicable law.
Why Join Us?
A career at BD means being part of a team that values your opinions and contributions and that encourages you to bring your authentic self to work. It's also a place where we help each other be great, we do what's right, we hold each other accountable, and learn and improve every day.
To find purpose in the possibilities, we need people who can see the bigger picture, who understand the human story that underpins everything we do. We welcome people with the imagination and drive to help us reinvent the future of health. At BD, you'll discover a culture in which you can learn, grow, and thrive. And find satisfaction in doing your part to make the world a better place.
To learn more about BD visit https://bd.com/careers
Becton, Dickinson and Company is an Equal Opportunity/Affirmative Action Employer. We do not unlawfully discriminate on the basis of race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic or civil union status, familial status, affectional or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, or any other protected status.
