Insulet started in 2000 with an idea and a mission to enable our customers to enjoy simplicity, freedom and healthier lives through the use of our Omnipod® product platform. In the last two decades we have improved the lives of hundreds of thousands of patients by using innovative technology that is wearable, waterproof, and lifestyle accommodating.

We are looking for highly motivated, performance driven individuals to be a part of our expanding team. We do this by hiring amazing people guided by shared values who exceed customer expectations. Our continued success depends on it!

Job Title: Associate Cybersecurity Analyst

Department: IT

Position Overview: 

      The Associate Cybersecurity Analyst will be involved in multiple aspects of supporting and managing the cybersecurity program with the goals of reducing risk, driving continuous maturity, and attending to live cybersecurity incidents occurring within the company. This position will require conducting hand-on security incident response to stop active cybersecurity threats targeting the Insulet IT enterprise to include phishing attacks, account compromise, and advanced malware. 

Responsibilities:

Act as analyst for enterprise incident response, reporting all technical findings, indicators of compromise, and threat actor tactics to incident managers and security leadershipMonitor enterprise system security platforms responding to security incidents, provide recommendations for improvement of indicator identification and security architecturesServe as technician performing security platform testing procedures, simulate exploitation tools and techniques. Identify, measure, and report findings on deficiencies in alerting capabilities  Evaluate and improve systems ensuring data integrity and confidentiality concerning data-at-rest and network transport mechanisms Preventing and detecting intrusions in cloud and on-premise enterprise architectures Perform incident triage, containment, and recommend actions for remediation and prevention with business stakeholdersPerform security log aggregation and implement analysis techniques to better identify security misconfigurationsAct as threat hunter, neutralizing security threats prior to exploitationImplement security orchestration, automation, and response tools to quickly gain control of identified threatsMonitor tech and cyber trends, news and emerging threats and regularly update staff

Education and Experience:

Minimum Requirements:

Associate degree or higherCompTIA A+ and CompTIA Security+ certifications a plusWillingness to pursue INFOSEC certifications and or advanced educationConceptual knowledge of penetration testing and red team attack toolsMust have strong ability to build trust and keep information confidentialExcellent organizational skills and the ability to follow incidents to their conclusionAbility to react to high pressure, changing, and complex technical environmentsHave the coping skills necessary to work through stressful situationsA high level of interest in information security and a desire to learnStrong problem solving and analytical skills

Preferred Skills and Competencies: 

Experience with hands on response tools like CrowdStrike, Carbon Black, and or Microsoft Defender ATPIntimate knowledge of security frameworks such as NIST, CIS, and ISOKnowledge of security platforms such as firewalls, IPS/IDS, and Privileged Access Mechanisms Preference given to those with operational technology (OT) security experience, industrial control systems (ICS), or Supervisory Control And Data Acquisition (SCADA) or working in a manufacturing controls environmentHands on experience responding to, stopping, and preventing phishing attacks, business email compromise and compromised account credentials Experience with technical assessment of IT related processes such as system and information security, system development, change management, computer operations, and data protection Intermediate understanding and demonstrated proficiency with Windows and Linux operating system forensics, Python, PowerShell, cyber-criminal threat intelligence, and penetration testing techniquesPreference given to those open to working a shift-based schedule / non-local business hoursUp to 10% Global travel possible