Job Description

General Summary:

The Cyber Threat Operations (CTOps) Intelligence and Threat Reporting Analyst is responsible for managing activities relating to monitoring, analyzing and reporting on information security intelligence, events and key performance indicators. The Analyst also runs the Cybersecurity High Value Target program. The CTOps Intelligence and Threat Reporting Analyst works with multiple technology platforms and interfaces with other groups within IT security operations, IT security risk management, and other technology and business functions. The primary goal of the CTOps Intelligence and Threat Reporting Analyst is to bring situational awareness to the Vertex leadership about cybersecurity intelligence, threats, trends and high value target risks.

Key Duties and Responsibilities:

​

• Centralize multiple threat sources (premium, industry-shared, open-source, dark web), correlate indicators and threats, and distill actionable intelligence.
• Research current and emerging threats facing the business and industry sector.

• Use automation to efficiently streamline and de-duplicate threats for playbooks, but use human analysis for actionable decision-making.

• Actively hunt for exposures and identify incidents, taking action to disrupt and remediate.

• Use and assign indicator severity and impact ratings to determine appropriate plans of action.

• Document threats into contextual reports outlining severity, urgency and impact, and ensure they can be understood by both management and technical teams.

• Serve as a trusted advisor to business area leadership and technical teams.

• Share relevant information with stakeholders and make recommendations for next steps when facing threats.

• Actively participate in tabletop exercises to hone and strengthen skills across the team.

• Evaluate and implement deception techniques designed to thwart adversaries.

• Work closely with security leadership to instill cybersecurity practices throughout business areas to address security operations, incident response, application security and infrastructure.

• Actively inform and engage in security projects across the business to disrupt threats.

• Be readily available to participate in collaborative threat analysis meetings with internal and external trusted entities. Implement technical systems and monitor them for unusual and suspicious activity across a wide range of products.

• Serve as an additional security team member, aiding in incident response (IR) with the IR and security operations center (SOC) teams.

• Interface with internal and external auditors for risk assessments.

• Recommend new security solutions as well as effective improvements to existing security controls that do not negatively impact business innovation.

• Serve as a liaison for the security team.

• Perform other duties as assigned.

Knowledge and Skills:

• Excellence in communicating business risk from cybersecurity issues.

• Experience driving measurable improvement in monitoring and response capabilities at scale.

• PowerBI

• Experience in investigations using formal chain-of-custody methods, forensic tools and best practices.

• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.

• CISSP, CISM and/or SANS certification a plus.

• Effective communicator with ability to influence business units.

• Analytical and problem-solving mindset.

• Highly organized and efficient.

• Leverages strategic and tactical thinking.

• Works calmly under pressure and with tight deadlines.

• Demonstrates effective decision-making skills.

• Is highly trustworthy; leads by example.

Education and Experience:

• At least 4+ years of information security monitoring and response or related experience.

• Proficiency in data analytics and reporting tools, including PowerBI.

Pay Range:

Disclosure Statement:

Flex Designation:

Flex Eligibility Status:

In this Remote-Eligible role, you can choose to be designated as:
1. Remote: work remotely five days per week and come into the office on occasion – you’re always welcome on-site; or select
2. Hybrid: work remotely up to two days per week; or select
3. On-Site: work five days per week on-site with ad hoc flexibility.

Note: The Flex status for this position is subject to Vertex’s Policy on Flex @ Vertex Program and may be changed at any time.

Company Information

Vertex is a global biotechnology company that invests in scientific innovation.

Vertex is committed to equal employment opportunity and non-discrimination for all employees and qualified applicants without regard to a person's race, color, sex, gender identity or expression, age, religion, national origin, ancestry, ethnicity, disability, veteran status, genetic information, sexual orientation, marital status, or any characteristic protected under applicable law. Vertex is an E-Verify Employer in the United States. Vertex will make reasonable accommodations for qualified individuals with known disabilities, in accordance with applicable law.

Any applicant requiring an accommodation in connection with the hiring process and/or to perform the essential functions of the position for which the applicant has applied should make a request to the recruiter or hiring manager, or contact Talent Acquisition at ApplicationAssistance@vrtx.com