Job Description Summary

The role of a BD Threat Detection Engineer is to maintain the confidentiality, integrity, availability, and privacy of BD’s data and information systems by architecting and optimizing end-to-end threat detection solutions. This role will leverage Microsoft Sentinel as the primary SIEM and enhance visibility through log enrichment, filtering, and orchestration technologies. The BD Threat Detection Engineer will be responsible for improving detection, response, and automation across the security landscape, ensuring the organization remains protected again advanced threats.

Job Description

We are the makers of possible 

BD is one of the largest global medical technology companies in the world. Advancing the world of health™ is our Purpose, and it’s no small feat. It takes the imagination and passion of all of us—from design and engineering to the manufacturing and marketing of our billions of MedTech products per year—to look at the impossible and find transformative solutions that turn dreams into possibilities. 

We believe that the human element, across our global teams, is what allows us to continually evolve. Join us and discover an environment in which you’ll be supported to learn, grow and become your best self. Become a maker of possible with us. 

The Threat Detection Engineer will be responsible for all aspects of threat detection including but not limited to implementing threat intelligence solutions (e.g., MISP), monitoring security information event management (SIEM) tools (e.g., Microsoft Azure Sentinel, IBM QRadar, ArcSight, etc.), utilizing automated threat detection systems (e.g., Wazuh, Darktrace, Vectra, etc.), and supporting incident response efforts.  The candidate should have knowledge of common cyber threats, malware analysis, reverse engineering, and network/host forensics.  This position requires extensive knowledge of Windows, Linux, and macOS operating systems as well as network protocols such as TCP/IP, DNS, HTTP, and SSH.  Experience in cloud environments such as AWS, Azure, or Google Cloud Platform would also be beneficial.  The ideal candidate will possess excellent communication skills, both written and verbal, and have experience working within a team environment.

Responsibilities

• Assist in the implementation of threat intelligence feeds into existing security operations platforms

• Conduct research on emerging threats and new attack vectors using open source and proprietary resources

• Support the deployment and configuration of threat detection technologies

• Monitor SIEM tools and other security applications for indicators of compromise related to known vulnerabilities, malware, and suspicious activity

• Collaborate with internal teams to develop effective threat detection strategies

• Stay up-to-date on the latest cybersecurity trends and threats

• Participate in red team exercises to test the effectiveness of current defenses

• Provide guidance on best practices for securing networks against advanced persistent threats

• Work closely with incident responders during investigations

• Create detailed reports highlighting findings from investigations

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, or related field preferred

• Minimum three years of relevant work experience required

• Strong understanding of computer networking concepts and protocols such as TCP/IP, DNS, HTTP, and SSH

• Familiarity with popular operating systems including Windows, Linux, and macOS

• Experience in deploying and configuring security software and hardware

• Knowledge of common security frameworks and standards such as NIST, ISO27001, PCI-DSS, HIPAA, GDPR, CCPA, and SOC 2

• Excellent problem solving abilities and attention to detail

• Ability to effectively communicate complex technical issues to non-technical stakeholders

• Strong analytical skills with the ability to think critically and solve problems independently

• Willingness to learn new technologies quickly

• Proactive approach to identifying potential security risks and addressing them proactively

• Ability to collaborate effectively across multiple departments and levels of management

• Demonstrated leadership skills with the ability to mentor junior staff members

At BD, we prioritize on-site collaboration because we believe it fosters creativity, innovation, and effective problem-solving, which are essential in the fast-paced healthcare industry. For most roles, we require a minimum of 4 days of in-office presence per week to maintain our culture of excellence and ensure smooth operations, while also recognizing the importance of flexibility and work-life balance. Remote or field-based positions will have different workplace arrangements which will be indicated in the job posting.

For certain roles at BD, employment is contingent upon the Company’s receipt of sufficient proof that you are fully vaccinated against COVID-19. In some locations, testing for COVID-19 may be available and/or required. Consistent with BD’s Workplace Accommodations Policy, requests for accommodation will be considered pursuant to applicable law.

Why Join Us?

A career at BD means being part of a team that values your opinions and contributions and that encourages you to bring your authentic self to work. It’s also a place where we help each other be great, we do what’s right, we hold each other accountable, and learn and improve every day.  

To find purpose in the possibilities, we need people who can see the bigger picture, who understand the human story that underpins everything we do. We welcome people with the imagination and drive to help us reinvent the future of health. At BD, you’ll discover a culture in which you can learn, grow, and thrive. And find satisfaction in doing your part to make the world a better place.  

To learn more about BD visit https://bd.com/careers

Becton, Dickinson and Company is an Equal Opportunity/Affirmative Action Employer. We do not unlawfully discriminate on the basis of race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic or civil union status, familial status, affectional or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, or any other protected status. 

Required Skills

Log Management, Microsoft Azure Sentinel, Microsoft Defender for Cloud, Security Information and Event Management (SIEM), Security Monitoring, SIEM Tools, Threat Detection

Optional Skills

Cyber Threat Intelligence, Incident Response

.

Primary Work Location

USA NJ - Franklin Lakes

Additional Locations

Work Shift