Novartis
Pharmaceuticals
SpecialistCSOCOnboardingandtools
“Specialist CSOC Onboarding and tools at Novartis. Skills: Data Onboarding, SIEM, SOAR, Sentinel, Cribl, Cloud Security Engineering. Design, develop, implement, and manage dataflow pipelines. Integrate dataflow pipelines with SIEM platforms”
What You'll Achieve.
Ensure the proactive defence of Novartis' critical assets, systems, and infrastructure against the ever-evolving landscape of cyber threats
Industry & Context.
Troubleshoot and provide support for onboarding issues; Detect and resolve issues in various data sources; Troubleshoot issues related to data ingestion, performance, and integrations
Provide 24x7 on-call support on a rotational basis, including weekends
What They're Looking For.
Must Have
4+ Years work experience, Good general security knowledge, Experienced IT administration with broad and in-depth technical, analytical, and conceptual skills, Experience in configuring Data collection Endpoints, connectors and parsers
Nice to Have
knowledge of security tools (DLP, XDR, SIEM, Firewalls) especially Sentinel, M365 Defender would be beneficial
What You'll Do.
and manage dataflow pipelines
Integrate dataflow pipelines with SIEM platforms
Onboard new data sources
Perform data analysis for identifying anomalies and trends
Develop dashboards and visualizations for data reporting
Gather requirements and develop solutions with CSOC engineers
Validate and ensure proper configuration and implementation of new logics
Perform data normalization
and develop data models
Manage backlog of customer requests for onboarding new data sources
Implement health monitoring for data sources and feeds
Identify opportunities for automation in data onboarding
Proactively detect parsing/missing-data issues
SOAR and other security platforms in an enterprise environment
Engineer scalable security architectures leveraging cloud-native and data-lake–based analytics
Integrate security tools across endpoints
Optimize log ingestion
Develop and maintain basic dashboards
and queries to support threat detection
How You'll Work.
Team & Collaboration
Collaboration with internal and external stakeholders, including Novartis' internal teams, external vendors, and Product/Platform engineers; Work closely with Application owners to understand and integrate various datasources; Work in close partnership with the CSOC stakeholders, including TDR, THR, Forensic, Content Development, and SOAR teams; Collaborate with CSOC engineers, Threat Hunters, and CSOC Analysts to gather requirements and develop solutions
Communication Scope
Communication Skills
Process & Methodology
Manage backlog of customer requests for onboarding new data sources
Applying for this Specialist CSOC Onboarding and tools role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Novartis?
Real rants from real employees. Read before you apply.