Security Analyst - Incident Response at Campbell Soup Company in Camden, NJ
General
Summary:
As a key member of Campbell's Information Security Incident Response Team the Security Analyst - Incident Response will be responsible for various parts of the incident response process -- detection, validation, containment, remediation, and communication -- for cybersecurity events and incidents such as malware infections, potential system compromises, Distributed Denial of Service (DDoS) attacks, and privacy breaches. The Security Analyst - Incident Response will participate on a team responsible for the rapid response and resolution of security incidents across the Campbell footprint including on-premises, the Cloud, and third-party hosted applications. This role involves working with internal and external teams to identify root cause, restore services and communicate status to affected stakeholders. In addition, the individual will be involved in threat hunting to proactively identifying security incidents before they occur. Primary
Responsibilities:
Incident Response Perform cybersecurity incident response including security event analysis, incident handling, reporting and threat analysis. The role involves coordination with Campbell's third-party Managed Security Services Provider (MSSP), internal information technology teams and other parties who may be engaged in the event of a cybersecurity event or incident. Analyze and triage events, anomalies and incidents to ensure appropriate identification of risk to company systems and information whether on premise, in the Cloud or managed by a third party. Participate in the forensic analysis of cybersecurity incidents. Communicate and coordinate response efforts including working with the third-party MSSP, Information Technology teams, Business Leaders, Legal, Chief Security Officer and other Third Parties to mitigate the impact of a security or privacy breach. Prepare situation reports, escalate to leadership and perform root cause analysis. Develop and report KPI's to enable continuous improvement of information security risk management controls. Enhance/Implement Capabilities to Strengthen Detection and Response Capabilities. Share lessons learned from incident response and threat hunting to strengthen detection and response capabilities. Model insider and external threats to Campbell's systems and data. Assess existing detection and response capabilities and provide recommendations for improvement. Leverage security orchestration (SOAR) to automate security response procedures. Maintain and enhance security monitoring and incident response procedural documentation. Partner with the third-party MSSP to develop KPI's for management. Threat Hunting Proactively seek to uncover indicators of compromise that will identify whether Campbell's systems have been breached. Collect and aggregate information from a wide variety of sources and formats them for relevance to our environment. Create hypotheses for analytics and testing of threat data. Partner with the third-party MSSP, Threat Intelligence firms and other parties to identify threats that may impact Campbell's. Minimum education required:
Bachelor's Degree Education desired:
Bachelors of Science Years of relevant
Experience:
4 - 7 Knowledge, skills and abilities required:
Technical expertise in information security, including deep familiarity with relevant intrusion techniques and attack vectors. Strong analytical skills including the ability to assess the severity and impact of a security incident. Demonstrated ability to collaborate effectively with operational teams internally and with a third-party Managed Security Services Provider (MSSP). Excellent investigative skills, insatiable curiosity, and an innate drive to win. Instinctive and creative, with an ability to think like the enemy Ability to demonstrate strong computer knowledge of network protocols, desktops, servers, cloud and software as a service technology. Experience with Security Information and Event Management (SIEM) platforms, next generation firewalls, email security platforms, Endpoint detection and response technologies, Data Loss Prevention Software, Web Proxies, and Web Application Firewalls. Familiarity with common scripting languages like Perl and/or Python. Familiarity with commonly deployed information technology resources including email, web, network, workstation and servers. Strong problem-solving and trouble-shooting skills Self-motivated and able to work independently. Strong written and verbal communication skills.
Salary Range:
$80K -- $100K
Minimum Qualification
IT SecurityEstimated Salary: $20 to $28 per hour based on qualifications.
Summary:
As a key member of Campbell's Information Security Incident Response Team the Security Analyst - Incident Response will be responsible for various parts of the incident response process -- detection, validation, containment, remediation, and communication -- for cybersecurity events and incidents such as malware infections, potential system compromises, Distributed Denial of Service (DDoS) attacks, and privacy breaches. The Security Analyst - Incident Response will participate on a team responsible for the rapid response and resolution of security incidents across the Campbell footprint including on-premises, the Cloud, and third-party hosted applications. This role involves working with internal and external teams to identify root cause, restore services and communicate status to affected stakeholders. In addition, the individual will be involved in threat hunting to proactively identifying security incidents before they occur. Primary
Responsibilities:
Incident Response Perform cybersecurity incident response including security event analysis, incident handling, reporting and threat analysis. The role involves coordination with Campbell's third-party Managed Security Services Provider (MSSP), internal information technology teams and other parties who may be engaged in the event of a cybersecurity event or incident. Analyze and triage events, anomalies and incidents to ensure appropriate identification of risk to company systems and information whether on premise, in the Cloud or managed by a third party. Participate in the forensic analysis of cybersecurity incidents. Communicate and coordinate response efforts including working with the third-party MSSP, Information Technology teams, Business Leaders, Legal, Chief Security Officer and other Third Parties to mitigate the impact of a security or privacy breach. Prepare situation reports, escalate to leadership and perform root cause analysis. Develop and report KPI's to enable continuous improvement of information security risk management controls. Enhance/Implement Capabilities to Strengthen Detection and Response Capabilities. Share lessons learned from incident response and threat hunting to strengthen detection and response capabilities. Model insider and external threats to Campbell's systems and data. Assess existing detection and response capabilities and provide recommendations for improvement. Leverage security orchestration (SOAR) to automate security response procedures. Maintain and enhance security monitoring and incident response procedural documentation. Partner with the third-party MSSP to develop KPI's for management. Threat Hunting Proactively seek to uncover indicators of compromise that will identify whether Campbell's systems have been breached. Collect and aggregate information from a wide variety of sources and formats them for relevance to our environment. Create hypotheses for analytics and testing of threat data. Partner with the third-party MSSP, Threat Intelligence firms and other parties to identify threats that may impact Campbell's. Minimum education required:
Bachelor's Degree Education desired:
Bachelors of Science Years of relevant
Experience:
4 - 7 Knowledge, skills and abilities required:
Technical expertise in information security, including deep familiarity with relevant intrusion techniques and attack vectors. Strong analytical skills including the ability to assess the severity and impact of a security incident. Demonstrated ability to collaborate effectively with operational teams internally and with a third-party Managed Security Services Provider (MSSP). Excellent investigative skills, insatiable curiosity, and an innate drive to win. Instinctive and creative, with an ability to think like the enemy Ability to demonstrate strong computer knowledge of network protocols, desktops, servers, cloud and software as a service technology. Experience with Security Information and Event Management (SIEM) platforms, next generation firewalls, email security platforms, Endpoint detection and response technologies, Data Loss Prevention Software, Web Proxies, and Web Application Firewalls. Familiarity with common scripting languages like Perl and/or Python. Familiarity with commonly deployed information technology resources including email, web, network, workstation and servers. Strong problem-solving and trouble-shooting skills Self-motivated and able to work independently. Strong written and verbal communication skills.
Salary Range:
$80K -- $100K
Minimum Qualification
IT SecurityEstimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
