Senior Specialist, IT Security Analyst

Job Description Summary: The Senior Specialist, IT Security Analyst is responsible for maintaining the confidentiality, integrity, and availability of data and systems within PTC. The Senior Specialist, IT Security Analyst safeguard systems by monitoring Intrusion Detection, firewalls, anti-virus systems and other security components to detect breaches and other cybersecurity incidents. The Senior Specialist, IT Security Analyst assists in the implementation of security controls, creation of security policies, vendor risk management, cyber security awareness, monitoring and responding to security events, data security, data classification, and compliance. The role leverages a high level of technical disciplines within Infrastructure and Information Security such as assessing threats, Penetration Testing, Vulnerability Management, attack methodologies, forensics analysis techniques, malware analysis, attack surface comprehension with Metasploit and Nessus. He/she will also leverage his/her knowledge of Networking, Identity and Access Management (IAM), Lightweight Directory Access Protocol (LDAP) servers, Microsoft Azure, and Databases to analyze solutions. The incumbent works cross-functionally with internal departments and external resources on security and system architecture-related issues. The Senior Specialist, IT Security Analyst ensures adherence to relevant regulatory requirements and company Standard Operating Procedures (SOPs) as appropriate Job Description: ESSENTIAL FUNCTIONS Primary duties/responsibilities: Review, analyze, respond to, and report on violations/alerts Responsible for the tracking and monitoring of software viruses Implement and upgrade security measures and controls Fix detected vulnerabilities to maintain a high-security standard Perform security awareness training Assists in the implementation of security policies and procedures Provides direct support to the business and IT staff for security related issues. Enforce security policies and procedures by administering and monitoring security profiles, reviews security violation reports and investigates possible security exceptions, updates, and maintains and documents security controls. Keeps abreast of application security trends and the emerging threat landscape and actively engages with vendors, understanding architecture roadmaps, technology direction, and investment to improve security capabilities and deliver cost effective solutions. Conducts regular system tests and ensuring continuous monitoring of network security Ensures all personnel have access to the IT system limited by need and role Work with team to conduct breach of security drills Manages service levels, control effectiveness, control failure remediation and operational automation Performs initial and periodic information security risk assessment/analysis, mitigation, and remediation. Assists in the development and knowledge transfer to IT team members, as well as other enterprise groups. Performs other tasks and assignments as needed and specified by management. KNOWLEDGE/SKILLS/ABILITIES REQUIRED * Minimum level of education and years of relevant work experience. A Bachelor's degree in Cybersecurity, Information Technology, or Computer Science, and a minimum of 3 years’ experience in a pharmaceutical, biotechnology or related environment or 2 years of PTC experience and/or relative work experience. * Special knowledge or skills needed and/or licenses or certificates required. 1-3 years of security analysis. Knowledge of infrastructure security assessments. Familiar with environmental pen testing and performing reviews of infrastructure for security vulnerabilities and threat modeling. Relevant experience supporting large scale solutions a plus. Experience with drafting of procedures and implementation guidelines. Demonstrable, impeccable writing skills for technical, management, and executive audiences. Demonstrable communication capabilities including oral presentation and ability to present in front of executive leadership. Demonstrable experience coordinating multiple concurrent issues, in high‐pressure situations. Understanding of Cryptographic Services. Experience with cloud solution environments such as Azure and Amazon Web Service a plus. One or more of the following certifications a plus: Security , CISSP, CEH. Proficiency with Microsoft Office. Excellent verbal and written communication skills. Ability to work independently and collaboratively, as required, in a fast-paced, matrixed, team environment consisting of internal and external team members. Analytical thinker with excellent problem-solving skills and the ability to adapt to changing priorities and deadlines. Excellent planning, organization and time management skills including the ability to support and prioritize multiple projects. * Travel requirements Up to 10% travel #LI-NM1 **At PTC Therapeutics we are seeking candidates in the United States who are fully vaccinated against COVID-19 or who will be fully vaccinated by the time they begin the position. EEO Statement: PTC Therapeutics is an equal opportunity employer. We welcome applications from all individuals, regardless of race, color, national origin, gender, age, physical characteristics, social origin, disability, religion, family status, pregnancy, sexual orientation, gender identity, gender expression, disability, veteran status or any unlawful criterion under applicable law. We are committed to treating all applicants fairly and avoiding discrimination. Click here to return to the careers page About Us PTC Therapeutics is a science-driven, global biopharmaceutical company founded in 1998 initially focused on the discovery and development of orally-administered, proprietary small molecule drugs that target post-transcriptional control processes. As we have grown, our technology platforms have expanded from this foundational scientific expertise in RNA mechanisms to include multiple approaches including gene therapy. While PTC’s discovery programs are directed at targets in multiple therapeutic areas, PTC is focusing particularly on the development and commercialization of treatments for orphan and ultra-orphan disorders. Our internally discovered pipeline addresses multiple therapeutic areas, including neuromuscular disorders, oncology, metabolic and infectious diseases. Our mission is to provide access to best-in-class treatments for rare disease patients who have little to no treatment options. At PTC, you are not joining a company, you are joining a cause. For more information on the company, please visit our website www.ptcbio.com. **At PTC Therapeutics we are seeking candidates in the United States who are fully vaccinated against COVID-19 or who will be fully vaccinated by the time they begin the position. Please Beware of False Job Advertisements PTC Therapeutics is aware of employment hiring scams that make false use of our company, leader and employee names to defraud job seekers. PTC does not make job offers without interviews and we never ask candidates for money. If you have encountered a job posting or been approached with a job offer from an email address that does not use ptcbio.com, or that you feel may be fraudulent, we strongly encourage you NOT to respond.