Job Description
Cyber Security Operations Incident Response Analyst
Our company is an innovative, global healthcare leader committed to improving health and well-being in 140 countries around the world. We focus our research on conditions that affect millions of people around the world, such as Alzheimer's, Diabetes, and Cancer, while expanding our strengths in areas such as vaccines and biologics. Join us in our mission to provide leading innovations and solutions for tomorrow.
We are looking to hire an experienced analyst to reinforce the cybersecurity operations team in our Prague technology hub.
Responsibilities
- Independently handle incident case investigations and drive to full remediation, including triage, analysis, containment and remediation.
- Assess the impact and risk of incidents, make evidence-based decisions and take appropriate actions according to defined procedures and best practice.
- Utilize various security tools and technologies to detect, investigate, contain, remediate and document cyber threats.
- Communicate and collaborate with other teams, including business liaisons, to ensure proper prioritization and resolution of incident cases.
- Contribute to the development and enhancement of security monitoring and detection capabilities by improving detection logic, filtering, aggregation and automation.
- Actively build and improve team’s knowledgebase and standard procedures.
- Support, assist and provide feedback to junior colleagues.
- Actively participate in development projects building functionality required by incident response team.
- Stay up to date with the latest security trends, attack techniques, vulnerabilities, and best practices.
Qualifications
- Previous experience of at least 3 years in a cyber security operations role (SOC, incident response, digital forensics, DLP, threat hunting or similar).
- Strong understanding of computer networks, operating systems, security tools, log types/sources, and attack vectors.
- Hands-on experience with some of the industry standard security tools (in categories like EDR, SIEM, MDM, identity management, sandboxes, proxies, firewalls, PAM).
- Comprehensive knowledge of procedures for security monitoring, incident investigation, incident response, and remediation methodologies.
- Investigative mindset with excellent analytical and problem-solving skills.
- Scripting skills to solve data processing tasks on ad hoc basis.
- Strong communication skills, both written and verbal. Experience presenting and reporting to senior leadership.
- Knowledge of cloud security concepts and technologies.
Preferred
- Industry relevant certifications (e.g. CompTIA Security, Certified Ethical Hacker, GIAC).
- Experience working in a global organization and large team.
- Familiarity with cyber regulatory frameworks and compliance requirements.
What we offer:
- Exciting work in a great team, global projects, international environment
- Opportunity to learn and grow professionally within the company globally
- Hybrid working model, flexible role pattern
- Pension and health insurance contributions
- Internal reward system plus referral program
- 5 weeks annual leave, 5 sick days, 15 days of certified sick leave paid above statutory requirements annually, 40 paid hours annually for volunteering activities, 12 weeks of parental contribution
- Cafeteria for tax free benefits according to your choice (meal vouchers, Lítačka, sport, culture, health, travel, etc.), Multisport Card
- Vodafone, Raiffeisen Bank, Foodora, and other discount programs
- Up-to-date laptop and iPhone, company car
- Parking in the garage for drivers or showers for bikers
- Competitive salary, incentive pay, and many more
Required Skills:
Cyber Threat Hunting, Cyber Threat Intelligence, Data Loss Prevention (DLP), Detail-Oriented, Digital Forensics, Incident Investigations, Incident Response, Incident Response Management, Information Systems Management, Malware Analysis, Security Monitoring, Security Tools, Vulnerability Management
Preferred Skills:
Current Employees apply HERE
Current Contingent Workers apply HERE
Search Firm Representatives Please Read Carefully
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails.
Employee Status:
Regular
Relocation:
VISA Sponsorship:
Travel Requirements:
Flexible Work Arrangements:
Hybrid
Shift:
Valid Driving License:
Hazardous Material(s):
Job Posting End Date:
03/31/2026
*A job posting is effective until 11:59:59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date.