Cyber Incident Response Analyst

Make your mark for patients

To strengthen our Information Technology team, based at the HQ, in Brussels, Belgium we are looking for a talented individual to fill the position of: Cyber Incident Response Analyst – OT

You will be joining the "Cyber Detection and Response" team, which is part of "IT Security, Risk management, Data Privacy and Compliance", and report to the Head of Cyber Detection and Response.

As a Cyber Incident Response Analyst specializing in Operational Technology (OT), you will be at the forefront of defending our critical infrastructure. Your primary responsibility will be to identify, analyze, and respond to cyber threats targeting our OT environment, which includes systems and networks used to monitor and control production processes. You will play a crucial role in ensuring the safety and reliability of our operations by developing and implementing incident response strategies, collaborating with cross-functional teams, and leveraging advanced threat intelligence.

Who You'll Work With

• SOC Team: Collaborate closely with our Security Operations Center (SOC) to ensure seamless incident detection, escalation, and response.
• Automation Teams: Work alongside the automation teams to understand and monitor the interfaces between IT and OT systems.
• External Incident Response Providers: Coordinate with third-party incident response experts to supplement internal capabilities during major incidents.
• IT Incident Management: Jointly coordinate Cyber Security Incidents
• Business Stakeholders: Engage with various business units to ensure alignment of security practices with business goals and to provide updates on incident status and resolution.

What You'll Do

• Incident Response Plan Creation: Develop, maintain, and enhance incident response plans specifically tailored for OT environments.
• Incident Analysis: Conduct thorough investigations of security incidents in OT systems, determine the root cause, and suggest containment and recovery actions.
• Expert Support to SOC Team: Provide expert-level support to the SOC team in the monitoring, analysis, and resolution of security alerts related to OT systems. Offer guidance on complex incidents and advanced threats.
• Detection Engineering: Work with detection engineers to design and refine detection strategies and tools for OT threats. Implement a collection management framework to identify and onboard critical datasets in the OT environment, improving security monitoring and enabling incident response processes.
• Threat Intelligence: Gather, analyze, and disseminate threat intelligence related to OT environments, staying ahead of emerging threats.
• Reporting: Prepare detailed reports on security incidents, including the nature, impact, and response actions taken. Communicate findings and recommendations to technical and non-technical stakeholders.

Interested?

For this role we're looking for the following education, experience and skills

• Education: Hold a "bachelor's degree in computer science" or possess a proven professional track record related to the role, with skills and capabilities being equally important as formal education.
• Technical Proficiency: Experience with OT systems (SCADA, DCS, PLCs), network packet analysis, OT visibility tools (e.g., Nozomi, Claroty, Dragos), and industrial communication protocols.
• Frameworks and Standards: Knowledge of relevant frameworks and standards such as PICERL, NIST-800-61, IEC62443, Mitre ATT&CK, and the Purdue model.
• Analytical Skills: Strong abilities in incident and log analysis, root cause determination, and threat intelligence.
• Problem-Solving: Capability to handle complex, high-pressure situations effectively.
• Communication: Excellent interpersonal and documentation skills for effective collaboration with diverse teams.

Why you should apply

At UCB, we strive to attract passionate and outstanding talents who thrive on change and are ready to bring real value to patients. Working for us you'll discover a place where you can grow and express your full potential. We place an emphasis on innovation, collaboration, and impact. Through meaningful recognition and a motivating work atmosphere, we aim to provide an optimal experience by caring about and valuing our employees – just as we do for the patients we serve.

If you believe you are the perfect match to join us on our pioneering adventure, then we invite you to apply and tell us more about your profile and motivation.

If you are interested to learn more about IT within UCB, please find more information here IT at UCB.

Are you ready to 'go beyond' to create value and make your mark for patients? If this sounds like you, then we would love to hear from you

About us
UCB is a global biopharmaceutical company, focusing on neurology and immunology. We are around 8,500 people in all four corners of the globe, inspired by patients and driven by science.

Why work with us?
At UCB, we don't just complete tasks, we create value. We aren't afraid to push forward, collaborate, and innovate to make our mark for patients. We have a caring, supportive culture where everyone feels included, respected, and has equitable opportunities to do their best work. We 'go beyond' to create value for our patients, and always with a human focus, whether that's on our patients, our employees, or our planet. Working for us, you will discover a place where you can grow, and have the freedom to carve your own career path to achieve your full potential.

UCB and its subsidiaries encourage diversity and inclusion in the workplace; we are an Equal Opportunity Employer. We do not discriminate on the basis of race/color/religion/sex/national origin/veteran/disability/age/sexual orientation/gender identity.

Should you require any adjustments to our process to assist you in demonstrating your strengths and capabilities contact us on EMEA- Please note should your enquiry not relate to adjustments; we will not be able to support you through this channel.