PepsiCo is a food and beverage company, and they are seeking a Cybersecurity Incident Response Analyst. The role involves responding to security incidents, analyzing threats, and mitigating vulnerabilities to protect the company's computer networks.
Identify, respond, and mitigate sophisticated threats to PepsiCo computer networks.
Conduct incident response activities, including advanced investigation (forensic, malware analyses etc.) to investigate potential intrusions and develop remediation guidance.
Perform the activities necessary for the immediate, short-term rapid resolution of incidents to minimize production down time and risk exposure.
Maintain a professional communicative relationship with clients and management to provide information throughout the incident, problem, and change management cycles.
Coordinates and drives efforts among multiple business units during response activities and post-mortem.
Proactive monitoring of client environments using specialized security applications.
Provide comprehensive and accurate information to Incident Response Manager for case reporting.
Develop the requisite expertise, knowledge, and ability to perform independently.
Contribute to team’s knowledge base enhancements and processes improvements, in order to ensure response activities align with best practices, minimize gaps in response and provide comprehensive mitigation of threats.
Participation in after hours on-call rotation when required.
Qualification
Required
2+ years of work experience in information security, especially in an Information operations / incident role.
Bachelor or master degree in Information Technology or related discipline.
Hands-on troubleshooting, analysis, and technical expertise to resolve incidents and service requests; previous experience in troubleshooting day-to-day operational processes such as security monitoring, data correlation, security operations etc.
Proven experience performing analysis of security events and incidents, to determine root cause and provide resolution.
Strong working knowledge of at least three of the following security tools: host-based antivirus, anti-spam gateway solutions, firewalls, IDS/IPS, server and network device hardening, data loss prevention, forensics software, vulnerability management, website security.
Competence in using both internal and external ticketing systems for ITIL-based incident, problem and change management.
Solid customer orientation with excellent oral and written communication skills.
A team-focused mentality with the proven ability to work effectively with diverse stakeholders.
An ability to effectively influence others to modify their opinions, plans, or behaviors.
Proactive attitude, seeking for improvement opportunities which can positively impact the security posture and the business.
An ability to work extremely well under pressure while maintaining a professional image and approach.
Decision-making capabilities, with an ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
Working experience against advanced persistent threats
Benefits
Bonus based on performance and eligibility target payout is 5% of annual salary paid out annually.
Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement.
Medical, Dental, Vision, Disability, Health, and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan.
