Loading...
Share this Job
Apply now »

Cyber SOC Incident Response Specialist

Cyber SOC Incident Response Specialist

Esplugues Llobregat, B, ES, 08950

Esplugues Llobregat, B, ES, 08950

Position Snapshot


Location: Global IT HUB Barcelona (Esplugues de Llobregat)
Company: Nestle
Full-time position
5​​​​+ years' experience in Cyber Security, 3+ years' in Incident Response

About IT at Nestlé

 
We are a multicultural and diverse team of IT professionals driving the biggest IT operations landscape of the FMCG industry, and a Digital Transformation at scale. We work with leading technologies and top external partners to provide solutions to enable Nestlé to engage with millions of consumers and customers worldwide. We look for people who are curious, courageous, innovative, collaborative and passionate about new technologies. We want to hear from candidates who have the courage to challenge; who believe the only way of moving forward is by doing and who look for solutions to improve the lives of our consumers through responsible use of technology.

In order to complete Nestlé Cyber SOC we are currently looking for a Cyber SOC Incident Response Specialist.

Position Summary


In this position, you will provide situational awareness through the detection, containment, and remediation of cyber threats. As a Cyber SOC Incident Response Specialist you will manage security incidents, ensuring they are properly identified, analyzed, communicated, actioned/defended, investigated and reported. Together with external SOC services, you will monitor Nestlé assets to identify potential cyber-attacks. Furthermore, you will define and create use cases and scenarios to address new threats and improve SOC’s security monitoring and alerting capabilities. Working within cross-functional teams, you will create and implement operational processes, identify threats and security gaps, and collaborate with the Security Community of Practice to develop measures to protect the company information and provide inputs to other positions/functions to perform lessons learned and continuous improvement.

A day in the life of...

 

  • Identify cyber security threats within the Nestlé infrastructure and develop the use cases for their proactive detection.
  • Investigate, escalate and coordinate the remediation of information security incidents in line with industry best practices (SANS, NIST, etc.).
  • Review and assess security and infrastructure logs for indicators of compromise (IOCs) or other anomalous behavior within networks, applications or user profiles.
  • Validate security configurations and access to security infrastructure tools, including firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), anti-malware/endpoint protection systems, etc.
  • Define, develop, maintain and regularly test incident response processes and procedures.
  • Liaise with the Security Product Manager to identify best practices and continuously improve technical standards, processes, procedures and guidelines to enable proper risk mitigation for each business capability.
  • Keep Security Product Group colleagues and key business stakeholders updated / engaged on security related developments.
  • Work with the Product Group teams to maintain and enhance the security levels of the products according to threat-based security strategy for the information and business capabilities in scope.

What will make you successful

 

 

  • Bachelor or Master’s Degree in Computer Science, Information Security or another similar relevant degree (an additional 3 years of experience may be substituted in lieu of a degree).
  • 5+ years of cyber incident response, risk management and/or security experience.
  • In-depth understanding of: threat based IS/IT security, latest security technologies and concepts, threat management, incident and vulnerability handling, technical security testing and maturity assessments, secure software lifecycle development (SecDevOps).
  • Knowledge and previous experience with ICS security solutions will be an advantage.
  • Experience with security information event management solutions (e.g. ArcSight, Splunk) and security incident orchestrations and/or automation platforms is desirable.
  • Effective communication skills at different levels of organization and in English.
  • Ability to present information to a wide variety of internal stakeholders, including senior level leadership.
  • Professional experience working with sensitive or confidential information in a work environment.
  • Experience having worked in a global environment and with virtual teams.
  • Relevant technical and industry certifications are a plus (e.g. CISSP, GCIH, OSCP, CEH).


We offer an attractive and dynamic international working environment with constant opportunities for development, reflecting our conviction that people are our most important asset. 

If you want to work in an international multi-discipline team, believe you have the right profile and you are looking for a development opportunity apply now in English on our career website www.nestle.com/jobs
 

Position Snapshot


Location: Global IT HUB Barcelona (Esplugues de Llobregat)
Company: Nestle
Full-time position
5​​​​+ years' experience in Cyber Security, 3+ years' in Incident Response

About IT at Nestlé

 
We are a multicultural and diverse team of IT professionals driving the biggest IT operations landscape of the FMCG industry, and a Digital Transformation at scale. We work with leading technologies and top external partners to provide solutions to enable Nestlé to engage with millions of consumers and customers worldwide. We look for people who are curious, courageous, innovative, collaborative and passionate about new technologies. We want to hear from candidates who have the courage to challenge; who believe the only way of moving forward is by doing and who look for solutions to improve the lives of our consumers through responsible use of technology.

In order to complete Nestlé Cyber SOC we are currently looking for a Cyber SOC Incident Response Specialist.

Position Summary


In this position, you will provide situational awareness through the detection, containment, and remediation of cyber threats. As a Cyber SOC Incident Response Specialist you will manage security incidents, ensuring they are properly identified, analyzed, communicated, actioned/defended, investigated and reported. Together with external SOC services, you will monitor Nestlé assets to identify potential cyber-attacks. Furthermore, you will define and create use cases and scenarios to address new threats and improve SOC’s security monitoring and alerting capabilities. Working within cross-functional teams, you will create and implement operational processes, identify threats and security gaps, and collaborate with the Security Community of Practice to develop measures to protect the company information and provide inputs to other positions/functions to perform lessons learned and continuous improvement.

A day in the life of...

 

  • Identify cyber security threats within the Nestlé infrastructure and develop the use cases for their proactive detection.
  • Investigate, escalate and coordinate the remediation of information security incidents in line with industry best practices (SANS, NIST, etc.).
  • Review and assess security and infrastructure logs for indicators of compromise (IOCs) or other anomalous behavior within networks, applications or user profiles.
  • Validate security configurations and access to security infrastructure tools, including firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), anti-malware/endpoint protection systems, etc.
  • Define, develop, maintain and regularly test incident response processes and procedures.
  • Liaise with the Security Product Manager to identify best practices and continuously improve technical standards, processes, procedures and guidelines to enable proper risk mitigation for each business capability.
  • Keep Security Product Group colleagues and key business stakeholders updated / engaged on security related developments.
  • Work with the Product Group teams to maintain and enhance the security levels of the products according to threat-based security strategy for the information and business capabilities in scope.

What will make you successful

 

 

  • Bachelor or Master’s Degree in Computer Science, Information Security or another similar relevant degree (an additional 3 years of experience may be substituted in lieu of a degree).
  • 5+ years of cyber incident response, risk management and/or security experience.
  • In-depth understanding of: threat based IS/IT security, latest security technologies and concepts, threat management, incident and vulnerability handling, technical security testing and maturity assessments, secure software lifecycle development (SecDevOps).
  • Knowledge and previous experience with ICS security solutions will be an advantage.
  • Experience with security information event management solutions (e.g. ArcSight, Splunk) and security incident orchestrations and/or automation platforms is desirable.
  • Effective communication skills at different levels of organization and in English.
  • Ability to present information to a wide variety of internal stakeholders, including senior level leadership.
  • Professional experience working with sensitive or confidential information in a work environment.
  • Experience having worked in a global environment and with virtual teams.
  • Relevant technical and industry certifications are a plus (e.g. CISSP, GCIH, OSCP, CEH).


We offer an attractive and dynamic international working environment with constant opportunities for development, reflecting our conviction that people are our most important asset. 

If you want to work in an international multi-discipline team, believe you have the right profile and you are looking for a development opportunity apply now in English on our career website www.nestle.com/jobs
 

Apply now »