The Sr. Security Analyst position in the Detection and Response team is responsible for leading the overall development and implementation of Cyber Security Cloud Detection and Response procedures as well as technologies for General Mills’ Cloud transformation. This will ensure that the Cyber Security Incident Response Team (CSIRT) is prepared to perform investigations quickly and correctly on Cloud hosted systems. As part of the Detection and Response team, this role develops detective controls, executes threat hunts, and handles incidents escalated from CSIRT.
Responsibilities:
Develop Cloud Detection and Response Capability
- Develop & document process and procedures for responding to cybersecurity incidents in Cloud environments and train others on the process
- Create detection rules using existing technology to detect cybersecurity incidents in Cloud environments
- Partner across Cyber Security to implement controls and tools to improve our ability to detect incidents
General Detection and Response Team participation
- Work with others in the detection and response team to improve our ability to detect and respond to cybersecurity incidents
- Build and test detective controls
- Participate in monthly threat hunts
- Assist with support tools for detection and response
- On-call, once a month, for escalations from CSIRT (malware analysis, forensics, …)
Partnerships and Benchmarking
- Maintain existing and develops new contacts within the candidate’s professional network of cyber security peers and leading security consultants/vendors.
- Continuously develops knowledge of evolving best practices through peer benchmarking, industry events/associations, and educational opportunities.
- Leverage’s partnership and relationships to benchmark existing and proposed cyber security solutions.
QUALIFICATIONS
- 5+ years IT experience with a passion for cybersecurity!
- Bachelor’s degree or equivalent experience
- Demonstrated ability to get things done both independently and in a collaborative, team-oriented environment.
- Experience with Cloud-based systems (AWS, Azure, GCP) from an infrastructure, operational and response perspective.
- Expertise in incident response processes and tools to detect, analyze, respond and contain cyber security threats quickly and correctly.
- Experience in forensic techniques used to analyze threats (including malware), to extract key indicators of attack and compromise.
- Experience with automating and scripting processes.
- Familiarity with Unix and Windows operating systems and administrative tools
- Knowledge in tools and techniques used by attackers to gain unauthorized access to systems.
- Prior experience with information security and associated technologies, including boundary protection (e.g. firewalls, proxies, IDS/IPS), endpoint protection, remote access, and security information and event management.
ADDITIONAL CONSIDERATION
The preferred location for this role is Minneapolis, MN however 100% remote work-at-home applications within the United States will be considered.
COMPANY OVERVIEW
We exist to make food the world loves. But we do more than that. Our company is a place that prioritizes being a force for good, a place to expand learning, explore new perspectives and reimagine new possibilities, every day. We look for people who want to bring their best — bold thinkers with big hearts who challenge one other and grow together. Because becoming the undisputed leader in food means surrounding ourselves with people who are hungry for what’s next.
More Information
- Address Minneapolis, USA
- Salary Offer $100.000 ~
- Experience Level Senior
- Total Years Experience 5-10
