At Bayer we’re visionaries, driven to solve the world’s toughest challenges and striving for a world where 'Health for all Hunger for none’ is no longer a dream, but a real possibility. We’re doing it with energy, curiosity and sheer dedication, always learning from unique perspectives of those around us, expanding our thinking, growing our capabilities and redefining ‘impossible’. There are so many reasons to join us. If you’re hungry to build a varied and meaningful career in a community of brilliant and diverse minds to make a real difference, there’s only one choice.

Lead Cyber Security Analyst 

As a Lead Cyber Security Analyst, you are responsible for assessing, managing, and enhancing the security measures of Bayer’s systems, networks, and data. You will utilize data analytics to monitor Bayer's security systems and applications, ensuring robust protection against potential threats.

YOUR TASKS AND RESPONSIBILITIES:

• Design, implement and maintain custom threat detection content in a global centralized CNAPP solution.
• Conducting advanced threat detection by collecting and analyzing security relevant data across the entire cloud infrastructure in scope such as AWS, Azure, GCP, and Alibaba Cloud (Aliyun) as well as related technologies like Kubernetes, EKS, and GKE, serving as a foundation for threat hunting activities.
• Translate business needs into technical requirements for configuration and effectiveness improvements of cyber threat hunting solutions for cloud native apps and environments.
• Consulting and ensuring feature implementation including proof-of-concept activities based on current threat landscape.
• Regularly identify white spots and gaps within cyber threat hunting solutions and provide guidance how to close them.
• Analyze the effectiveness of cyber threat hunting processes, align them with critical processes of our stakeholders and partners to identify and implement continuous improvements.
• Steer security incident response activities as third level support for cyber security incident response and guide colleagues in the global team.
• Regularly reviewing and analyzing alerts to understand associated cyber threats, and sharing lessons learned through knowledge transfer sessions with team members particularly regarding threats in the cloud.
• Work together with threat intelligence squad to create clues and hypothesis for proactively detecting advanced threats utilizing cloud native technologies e.g.  CNAPP.
• Analyze logs, alerts, and other data inputs to proactively identify opportunities to use tools and technologies to improve data security within our global cloud environments.
• Analyze native cloud services such as Lambda functions to identify security-relevant patterns, with a strong focus on log interpretation and threat detection in cloud environments.
• Collaborate with internal and external stakeholders to exchange knowledge in advanced cyber threats, malware analysis, hunting methodologies and state of the art technologies for hunting.
• Regularly publish KPIs which show the value of cyber threat hunting to internal stakeholders.
• The primary location for this role is Creve Coeur, MO.  Candidates must be based within reasonable commute to this facility.  Remote with travel working arrangement will not be allowed for this role.

WHO YOU ARE

Bayer seeks an incumbent who possesses the following:

Required Qualifications:

• Ability to think about adversary intentions and actions to aid in effective incident response especially for cloud cyber threats.
• Strong understanding of agile methodologies and being to work in agile environments.
• Extensive experience in using cloud-native services provided by major cloud platforms such as AWS, Azure, and GCP.
• Strong capabilities in the area’s security incident response, detection engineering, and penetration testing in complex cloud environments.
• Strong analytical skills and experience with large investigation cases.
• Strong understanding of IT and enterprise systems including business processes and data.
• Experience guiding a work stream of IT security professionals with both physical and virtual presence.
• Strong collaboration skills and ability to work in global teams.
• Excellent oral and written communication skills.
• University degree or commensurate experience, in Information Technology or a related field with experience with large enterprise environments.

Preferred Qualifications:

• Further certifications, such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), CompTIA, EC-Council (CSA) SOC.

This role will be posted through 6/20/2025.

#LI-US