Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.
You will work in the Cybersecurity Incident Response Center at MDLZ as a Senior Information Security Analyst.
How you will contribute:
As a Senior Incident Response Analyst you will play a vital role in strengthening MDLZ security measures. You will investigate and respond to security incidents, collaborate with cross-functional teams, and drive resolution to complex cybersecurity issues within our environment. Your expertise will contribute strong and well-designed Incident Response techniques, processes, and capabilities. You will be asked to partner on improvements both within and outside of the security domain to drive increases in team, department, and organizational maturity.
What you will bring:
- Take ownership of enhancing our security posture and protecting MDLZ infrastructure
- Be adept at technical writing.
- Capable of communicating with both technical and nontechnical stakeholders across all levels including C-suite with ability to scope, tailor, and triage information shared to the roles and business priorities of audiences
- Develop and execute comprehensive containment, eradication, and recovery strategies, prioritizing business continuity and minimizing disruption to business processes. Coordinate response activities with incident response teams, internal stakeholders, and external partners. Follow established and best-practice incident response procedures while iterating as necessary for novel events.
- Collaborate closely with a wide range of technical and non-technical teams across business functions and geographies. Effectively scope, tailor, and triage incident information for diverse audiences, including C-suite executives, providing clear, concise, and timely updates.
- Perform in-depth malware analysis, network forensics, log analysis, and reverse engineering to identify root causes, establish timelines, and uncover Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) both independently and in partnership with security, technology, and business roles.
- Contribute significantly to the continuous review, refinement, and expansion of incident response playbooks, runbooks, and Standard Operating Procedures (SOPs), aligning them with industry best practices (e.g., NIST, MITRE) and our unique global context.
- Embody a passion for growth and drive for continuous learning
- Act as a coach and mentor to other analysts, elevating skills and contributing to overall uplift of our global cybersecurity capabilities. Provide technical training sessions to various MDLZ global teams.
- Perform "lessons learned" reviews for significant incidents, identifying systemic weaknesses and driving recommendations for security control improvements, architectural enhancements, and organizational changes to prevent recurrence.
- Contribute to team's expansive skill set across topics like reverse-engineering, cloud security, process development, scripting in Python, PowerShell, Bash, C/C++, ICS protocols, AI-based automation, and more.
More about this role
- Global Cybersecurity Incident Response Team with a rotational on-call schedule
- Monitor computer environments for security issues
- Perform Threat Analysis on events reported by security tools, external parties, and internal SMEs
- Investigate security breaches and other cybersecurity events / incidents
- Contribute to Root Cause Analysis, Lessons Learned, and Corrective Action Reporting
- Create executive summaries, status reports and supply metrics to relevant stakeholders independently
- Participate in special projects as needed
What extra ingredients you will bring:
Education / Certifications:
- Bachelor's Degree in Information Technology, Cybersecurity, Computer Science or similar.
- Hold professional certifications through certifying bodies like:
- CompTIA: Security+, CySA+
- SANS-GIAC: GCIH, GDAT, GPEN, GCFE, GRID
- ISC2: CISSP
- Offsec: OCSP, OSIR
Job specific requirements:
- 3-6+ years experience in Incident Response, Information Security, SOC, Forensics, Purple-teaming, or related field
- Knowledge/Experience in:
- SIEM (ie Splunk, Humio), SOAR (ie Cyware, Splunk, XSOAR), Endpoint Security (EDR) (ie CarbonBlack, Crowdstrike, Defender), Email Security (ie. Proofpoint, O365 ATP), Firewalls, WAF, IDS/IPS, Web Content Filtering, Proxies, Database, Data Loss Prevention (DLP), Identity and Access Management (IAM), Cloud Computing Services, Scripting, MITRE ATT&CK Framework and Incident Response, NIST, Cloud Compute (ie AWS, GCP, Azure), Cloud Native Application Protection (ie Forcepoint ONE, Wiz, Orca)
Travel requirements:
- Occasional
Work schedule:
- Remote
- On-call
No Relocation support available
Business Unit Summary
Headquartered in Singapore, Mondelēz International's Asia, Middle East and Africa (AMEA) region is comprised of six business units, has more than 21,000 employees and operates in more than 27 countries including Australia, China, Indonesia, Ghana, India, Japan, Malaysia, New Zealand, Nigeria, Philippines, Saudi Arabia, South Africa, Thailand, United Arab Emirates and Vietnam. Seventy-six nationalities work across a network of more than 35 manufacturing plants, three global research and development technical centers and in offices stretching from Auckland, New Zealand to Casablanca, Morocco. Mondelēz International in the AMEA region is the proud maker of global and local iconic brands such as Oreo and belVita biscuits, Kinh Do mooncakes, Cadbury, Cadbury Dairy Milk and Milka chocolate, Halls candy, Stride gum, Tang powdered beverage and Philadelphia cheese. We are also proud to be named a Top Employer in many of our markets.
Mondelēz International is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation or preference, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.
Job Type
Regular
Information Security
Technology & Digital
Top Skills
What We Do
Mondelēz International, Inc. (NASDAQ: MDLZ) is an American multinational confectionery, food, and beverage company based in Illinois which employs approximately 90,000 individuals around the world.
Our Purpose
Our purpose is to empower people to snack right. We will lead the future of snacking around the world by offering the right snack, for the right moment, made the right way.
Our Brands
We’re leading the future of snacking with iconic brands such as Oreo, belVita and LU biscuits; Cadbury Dairy Milk, Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum.
Our People
Our 90,000+ colleagues around the world are key to the success of our business. Our Values and Leadership Commitments of Love our Consumers and Brands, Grow Every Day, and Do What's Right shapes our culture – what we believe in, stand for, and what guides our actions and decisions. Great people and great brands. That’s who we are.
Our Strategies
We are uniquely positioned to lead the future of snacking with strong leadership in our categories, an unparalleled portfolio of global and local brands, and a solid footprint in fast-growing markets. Aimed at delivering sustainable growth, our strategic plan is centered around three strategic priorities:
• Growth: accelerate consumer-centric growth
• Execution: drive operational excellence
• Culture: build a winning growth culture
Why Work With Us
We offer passionate, energetic and curious people a huge choice of careers in our fun, fast-paced, global business. We operate in four regions: Asia, Middle East & Africa; Europe; Latin America; and North America. And in over 80 countries our people are united in a common purpose to empower people to snack right.
Gallery
Mondelēz International Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
#TeamMDLZ Flexible Working Pledge: We Trust each other to work flexibly and productively We show Empathy, encouraging belonging and connection We are Mindful of making space and taking time
