Job Description
Cyber Security Operations - Incident Response Analyst
Our company is an innovative, global healthcare leader committed to improving health and well-being in 140 countries around the world. We focus our research on conditions that affect millions of people around the world, such as Alzheimer's, Diabetes, and Cancer, while expanding our strengths in areas such as vaccines and biologics. Join us in our mission to provide leading innovations and solutions for tomorrow.
We are looking to hire an experienced analyst to reinforce the cybersecurity operations team in our Prague technology hub.
Responsibilities
- Independently handle incident case investigations and drive to full remediation, including triage, analysis, containment and remediation.
- Assess the impact and risk of incidents, make evidence-based decisions and take appropriate actions according to defined procedures and best practice.
- Utilize various security tools and technologies to detect, investigate, contain, remediate and document cyber threats.
- Communicate and collaborate with other teams, including business liaisons, to ensure proper prioritization and resolution of incident cases.
- Contribute to the development and enhancement of security monitoring and detection capabilities by improving detection logic, filtering, aggregation and automation.
- Actively build and improve team’s knowledgebase and standard procedures.
- Support, assist and provide feedback to junior colleagues.
- Actively participate in development projects building functionality required by incident response team.
- Stay up to date with the latest security trends, attack techniques, vulnerabilities, and best practices.
Qualifications
Required
- Experience of at least 3 years in a cyber security operations role (SOC, incident response, digital forensics, DLP, threat hunting or similar).
- Strong understanding of operating systems, computer networks, cloud environment, log sources, and attack vectors.
- Investigative mindset with excellent analytical and problem-solving skills. Ability and motivation to continuously learn, improve and build new capabilities.
- Hands-on experience with some of the industry standard security tools (in categories like EDR, SIEM, MDM, identity management, sandboxes, proxies, firewalls, PAM).
- Comprehensive knowledge of security monitoring, incident investigation, incident response, and remediation methodologies.
- Scripting skills to solve data processing tasks on ad hoc basis. Basic hand-on code analysis in various programming languages.
- Strong communication skills, both written and verbal. Experience presenting and reporting to senior leadership.
Preferred
- Industry relevant certifications (e.g. CompTIA Security, Certified Ethical Hacker, GIAC).
- Experience working in a global organization and large team.
- Familiarity with cyber regulatory frameworks and compliance requirements.
Required Skills:
Cyber Threat Hunting, Cyber Threat Intelligence, Data Loss Prevention (DLP), Detail-Oriented, Digital Forensics, Incident Investigations, Incident Response, Incident Response Management, Information Systems Management, Malware Analysis, Security Monitoring, Security Tools, Vulnerability Management
Preferred Skills:
Current Employees apply HERE
Current Contingent Workers apply HERE
Search Firm Representatives Please Read Carefully
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails.
Employee Status:
Regular
Relocation:
VISA Sponsorship:
Travel Requirements:
Flexible Work Arrangements:
Hybrid
Shift:
Valid Driving License:
Hazardous Material(s):
Job Posting End Date:
06/28/2026
*A job posting is effective until 11:59:59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date.