Senior Analyst, CSIRT

Are You Ready to Make It Happen at Mondelez International?

Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.

You work with the information security team as a competent and experienced information security and compliance leader.

How you will contribute

As a Senior Incident Response Analyst, you will play a vital role in strengthening MDLZ security measures. You will investigate and respond to security incidents, collaborate with cross-functional teams, and drive resolution to complex cybersecurity issues within our environment. Your expertise will contribute to strong and well-designed Incident Response techniques, processes, and capabilities. You will be asked to partner on improvements both within and outside of the security domain to drive increases in team, department, and organizational maturity.

What you will bring

• Take ownership of enhancing our security posture and protecting MDLZ infrastructure

• Be adept at technical writing.

• Capable of communicating with both technical and nontechnical stakeholders across all levels including C-suite with ability to scope, tailor, and triage information shared to the roles and business priorities of audiences

• Develop and execute comprehensive containment, eradication, and recovery strategies, prioritizing business continuity and minimizing disruption to business processes. Coordinate response activities with incident response teams, internal stakeholders, and external partners. Follow established and best-practice incident response procedures while iterating as necessary for novel events.

• Collaborate closely with a wide range of technical and non-technical teams across business functions and geographies. Effectively scope, tailor, and triage incident information for diverse audiences, including C-suite executives, providing clear, concise, and timely updates.

• Perform in-depth malware analysis, network forensics, log analysis, and reverse engineering to identify root causes, establish timelines, and uncover Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) both independently and in partnership with security, technology, and business roles.

• Contribute significantly to the continuous review, refinement, and expansion of incident response playbooks, runbooks, and Standard Operating Procedures (SOPs), aligning them with industry best practices (e.g., NIST, MITRE) and our unique global context.

• Embody a passion for growth and drive for continuous learning

• Act as a coach and mentor to other analysts, elevating skills and contributing to overall uplift of our global cybersecurity capabilities. Provide technical training sessions to various MDLZ global teams.

• Perform "lessons learned" reviews for significant incidents, identifying systemic weaknesses and driving recommendations for security control improvements, architectural enhancements, and organizational changes to prevent recurrence.

• Contribute to team's expansive skills set across topics like reverse engineering, cloud security, process development, scripting in Python, PowerShell, Bash, C/C++, ICS protocols, AI-based automation, and more.

More about this role

What you need to know about this position:

• Global Cybersecurity Incident Response Team with a rotational on-call schedule

• Monitor computer environments for security issues

• Perform Threat Analysis on events reported by security tools, external parties, and internal SMEs

• Investigate security breaches and other cybersecurity events / incidents

• Contribute to Root Cause Analysis, Lessons Learned, and Corrective Action Reporting

• Create executive summaries, status reports and supply metrics to relevant stakeholders independently

• Participate in special projects as needed

Education / Certifications:

• High school diploma, GED, or equivalent certification

• Bachelor's degree "preferred" - in Information Technology, Cybersecurity, Computer Science or relatable field.

• Hold professional certifications through certifying bodies like:

• CompTIA: Security+, CySA+

• SANS-GIAC: GCIH, GDAT, GPEN, GCFE, GRID

• ISC2: CISSP

• Offsec: OCSP, OSIR

Job specific requirements:

• 3-6+ years' experience in Incident Response, Information Security, SOC, Forensics, Purple-teaming, or related field

• Knowledge/Experience in:

• SIEM (ie Splunk, Humio), SOAR (ie Cyware, Splunk, XSOAR), Endpoint Security (EDR) (ie CarbonBlack, Crowdstrike, Defender), Email Security (ie. Proofpoint, O365 ATP), Firewalls, WAF, IDS/IPS, Web Content Filtering, Proxies, Database, Data Loss Prevention (DLP), Identity and Access Management (IAM), Cloud Computing Services, Scripting, MITRE ATT&CK Framework and Incident Response, NIST, Cloud Compute (ie AWS, GCP, Azure), Cloud Native Application Protection (ie Forcepoint ONE, Wiz, Orca)

Travel requirements: Occasional, as needed.

Work schedule:

• Remote (Core Hours) - Based on geographical location and time zone.

• On call - one weekend every 8 to 10 weeks.

Salary and Benefits: The base salary range for this position is $122,000 to $167,750; the exact salary depends on several factors such as experience, skills, education and location. In addition to base salary, this position is eligible for participation in a highly competitive bonus program with possibility for overachievement based on performance and company results.

In addition, Mondelez International offers the following benefits: health insurance, wellness and family support programs, life and disability insurance, retirement savings plans, paid leave programs, education related programs, paid holidays and vacation time. Some of these benefits have eligibility requirements. Many of these benefits are subsidized or fully paid for by the company.

No Relocation support available Business Unit Summary

The United States is the largest market in the Mondelez International family with a significant employee and manufacturing footprint. Here, we produce our well-loved household favorites to provide our consumers with the right snack, at the right moment, made the right way. We have corporate offices, sales, manufacturing and distribution locations throughout the U.S. to ensure our iconic brands-including Oreo and Chips Ahoy! cookies, Ritz, Wheat Thins and Triscuit crackers, and Swedish Fish and Sour Patch Kids confectionery products -are close at hand for our consumers across the country.

Mondelez Global LLC is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected Veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law. Applicants who require accommodation to participate in the job application process may contact ... for assistance.

For more information about your Federal rights, please see eeopost.pdf ; EEO is the Law Poster Supplement ; Pay Transparency Nondiscrimination Provision ; Know Your Rights: Workplace Discrimination is Illegal

Job Type RegularInformation SecurityTechnology & Digital