Information Security Analyst

Information Security Analyst at Mondelēz International

Are you ready to make an impact within a global powerhouse? As an Information Security Analyst at Mondelēz International, you will play a crucial role in strengthening our security posture and safeguarding our infrastructure. This position offers a unique opportunity to contribute to a Global Cybersecurity Incident Response Team, working on critical security initiatives and collaborating with diverse stakeholders.

Key Responsibilities:

• Contribute measurably to enhancing our security posture and protecting MDLZ infrastructure.
• Be adept at technical writing and capable of communicating with both technical and nontechnical stakeholders, including C-suite, tailoring information to their roles and business priorities.
• Contribute to comprehensive containment, eradication, and recovery strategies, prioritizing business continuity and minimizing disruption.
• Coordinate response activities with incident response teams, internal stakeholders, and external partners.
• Follow established and best-practice incident response procedures, iterating as necessary for novel events.
• Collaborate closely with a wide range of technical and non-technical teams across business functions and geographies.
• Assist with scoping, tailoring, and triage of event/incident information for diverse audiences, providing clear, concise, and timely updates.
• Contribute to in-depth malware analysis, network forensics, log analysis, and reverse engineering to identify root causes, establish timelines, and uncover Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs).
• Contribute to the continuous review, refinement, and expansion of incident response playbooks, runbooks, and Standard Operating Procedures (SOPs), aligning them with industry best practices (e.g., NIST, MITRE).
• Embody a passion for growth and a drive for continuous learning, acting as a peer and partner to uplift global cybersecurity capabilities.
• Contribute to "lessons learned" reviews for significant incidents, identifying systemic weaknesses and assisting with recommendations for security control improvements.
• Expand your skills across topics like reverse-engineering, cloud security, process development, scripting (Python, PowerShell, Bash, C/C++), ICS protocols, and AI-based automation.

More About This Role:

This role is part of a Global Cybersecurity Incident Response Team and includes a rotational on-call schedule. You will monitor computer environments for security issues, perform Threat Analysis on reported events, assist with security breach investigations, and contribute to Root Cause Analysis, Lessons Learned, and Corrective Action Reporting. You will also prepare executive summaries, status reports, and supply metrics to relevant stakeholders, and participate in special projects as needed.

What extra ingredients you will bring:

Education / Certifications:

• Bachelor’s Degree in Information Technology, Cybersecurity, Computer Science or similar.
• Professional certifications such as CompTIA (Security+, CySA+), SANS-GIAC (GCIH, GDAT, GPEN, GCFE, GRID), ISC2 (CISSP), or Offsec (OSCP, OSIR) are highly valued.

Job specific requirements:

• 3-6+ years experience in Incident Response, Information Security, SOC, Forensics, Purple-teaming, or related field.
• Knowledge/Experience in: SIEM (e.g., Splunk, Humio), SOAR (e.g., Cyware, Splunk, XSOAR), Endpoint Security (EDR) (e.g., CarbonBlack, Crowdstrike, Defender), Email Security (e.g., Proofpoint, O365 ATP), Firewalls, WAF, IDS/IPS, Web Content Filtering, Proxies, Database, Data Loss Prevention (DLP), Identity and Access Management (IAM), Cloud Computing Services, Scripting, MITRE ATT&CK Framework and Incident Response, NIST, Cloud Compute (e.g., AWS, GCP, Azure), Cloud Native Application Protection (e.g., Forcepoint ONE, Wiz, Orca).

Travel & Work Schedule:

• Occasional travel may be required.
• This is a Remote position with an on-call schedule.

Key skills/competency:

• Incident Response
• Threat Analysis
• Cybersecurity
• Network Forensics
• Malware Analysis
• SIEM/SOAR
• Cloud Security
• Scripting (Python, PowerShell)
• NIST/MITRE ATT&CK
• Communication Skills