Responsible for monitoring, detecting, responding to, and remediating security threats across Valent USA and Sumitomo Biorational Company’s (SBC) technology landscape.
Ensures the continuous operation and improvement of security tools, automates security workflows, and supports the implementation of security controls across on-premises and cloud environments.
Leads initiatives to advance company-wide cybersecurity services and requires a high-level technical expertise to provide guidance on information security best practices.
Contributes to information security policy maintenance; assists with the design of security education, training, and monitors compliance with third-party suppliers, SBC IT Security policies, regulatory requirements, and applicable laws.
Reports to the Security Operations Manager and works closely with internal IT teams, managed service providers, legal, and compliance stakeholders to safeguard Valent’s and SBC’s systems, data, and users.
Operate and tune security monitoring platforms including SIEM, endpoint detection and response (EDR), identity protection, email security, and cloud security tools.
Triage and investigate security alerts, determine root cause, and take appropriate containment and remediation actions in coordination with internal and external teams.
Support incident response activities.
Collaborate with the Security Operations Manager and managed security services provider (MSSP) to refine detection rules, correlation logic, and incident escalation procedures.
Configure, maintain, and improve security tools to ensure optimal performance and coverage.
Identify opportunities to automate operational tasks such as log analysis, incident response steps, and reporting using scripting tools (e.g., PowerShell or Python).
Analyze vulnerability scan results and coordinate remediation efforts with infrastructure, application, and cloud teams.

Requirements

Bachelor’s degree or equivalent work experience.
At least 5 years of Information Security experience (10 years preferred).
At least five years of “hands-on experience”.
Possess at least one of the following professional certifications: Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Cloud Security Professional (CCSP)
Solid understanding of cybersecurity concepts including threat detection, incident response, vulnerability management, access control, and log analysis.
Experience operating and supporting tools such as SIEM, EDR, MFA, email security, cloud security posture management (CSPM), and vulnerability scanners.
Knowledge of hybrid and cloud security best practices, including Microsoft Azure security technologies.
Familiarity with common attack techniques and the MITRE ATT&CK framework.
Experience with scripting languages (e.g., PowerShell, Python) is preferred for automation and tool integration.
Understanding in securing hybrid, single, or multi cloud environments, leveraging cloud native tools as well as other 3rd party tools to establish a layered security approach.
Experience in developing, documenting, and maintaining security policy, standards, and procedures

Benefits

High-quality healthcare coverage starting on day one, with options for medical (HSA/HRA), vision, and dental plans
5% company contribution to your 401(k), plus a quarterly discretionary bonus
Immediate 100% vesting of all retirement contributions
Financial assistance programs to support your goals
Life and disability insurance for added security
Generous paid time off, including vacation, holidays, and volunteer days
Flexible work arrangements available

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills

information securitythreat detectionincident responsevulnerability managementaccess controllog analysisscripting (PowerShell, Python)security policy developmentsecurity standardssecurity procedures

Soft skills

leadershipcollaborationcommunicationproblem-solvinganalytical thinkingattention to detailorganizational skillsguidancetrainingcompliance monitoring

Certifications

Certified Information Systems Security Professional (CISSP)Certified Information Security Manager (CISM)Certified Cloud Security Professional (CCSP)