Consultant, Cyber Security

• Company General Mills
• No. of Openings 10+
• Salary Not Disclosed
• Work Type on-site

Job Description :

About the job

India is among the top ten priority markets for General Mills, and hosts our Global Shared Services Centre. This is the Global Shared Services arm of General Mills Inc., which supports its operations worldwide. With over 1,300 employees in Mumbai, the center has capabilities in the areas of Supply Chain, Finance, HR, Digital and Technology, Sales Capabilities, Consumer Insights, ITQ (R&D & Quality), and Enterprise Business Services. Learning and capacity-building is a key ingredient of our success.

Job Overview

As a CSIRT Lead responsible for advance and complex investigation of the security events on 24x7 basis by ensuring alignment to SLAs.

Job Responsibilities

40 % of Time Monitor and investigate cyber security events

• Direct incident response team while responding to more complex incidents
• Handle escalations from other members of the incident response team
• Monitor SIEM and other tools for potential threats, intrusions, or compromises
• Analyze emails reported as phishing
• Investigate the functionality, origin, potential impact and contain threats including malware, phishing, and other intrusions
• Analyze malware in a sandbox environment to understand impact
• Use General Mills forensic tools to understand how malware may have impacted a system
• Review investigations performed by peers
• Escalate cybersecurity events according to General Mills Cybersecurity Incident Response Plan

30% of Time Continuous improvement

• Review investigations performed by other team members and recommend improvements
• Fine tune detection rules
• Lead and participate in incident retrospectives
• Develop reports on incident trends to share with other Cyber Security Teams
• Recommend, prioritize, and implement solutions for process improvement
• Recommend solutions to prevent threats observed by CSIRT
• Participate in projects to implement new technologies

30% of Time Procedure Development, Refinement and Team Building

• Acquire, apply, and share expert knowledge of the business, its products, and processes to incident response procedures
• Maintain understanding of the global threat landscape and share it with the rest of the team
• Develop incident investigation processes and playbooks
• Ensure processes are clearly communicated, understood, and followed
• Plan shift schedule
• Train and Mentor other CSIRT members to improve their investigation skills
• Support tools used in incident response
• Train and mentor new team members
• Hiring & On-boarding, new talent

Desired Profile

Cyber Security Incident Responder

SOC Analyst

Security Analyst

SIEM Analyst

Education

Minimum Degree Requirements: Bachelors

Preferred Degree Requirements: Bachelors

Experience

Minimum years of related experience required: 5 years

Preferred years of related experience: 8 years

Certifications

Preferred Required professional certifications: GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP) Certified Ethical Hacker (CEH), CompTIA Cybersecurity Analyst (CySA+), EC-Council Certified Incident Handler (ECIH)

Specific Job Experience Or Skills Needed

• Demonstrate ability to work in 24x7 facility in rotating shifts
• Expertise in incident response processes and tools to detect, analyze, respond, and contain cyber security threats quickly and correctly
• Expertise in forensic techniques used to analyze threats (including malware), to extract key indicators of attack and compromise
• Experience with automating and scripting processes
• Knowledge in tools and techniques used by attackers to gain unauthorized access to systems
• Prior experience with information security and associated technologies, including boundary protection (e.g. firewalls, proxies, IDS/IPS), endpoint protection, remote access, and security information and event management
• Demonstrated ability to get things done both independently and in a collaborative, team-oriented environment
• Skilled in mixed Microsoft and open-source operating system environments
• Understanding of network protocols
• Create better solutions through tireless curiosity and innovation stretching beyond your area of expertise

Competencies/Behaviors Required For Job

• High levels of judgement, ethics, and discretion
• Excellent analytical and conceptual problem-solving skills
• Innate curiosity and desire to learn with a strong inclination to drive for results in ambiguous spaces
• Strong communication, and interpersonal skills
• Self-starter, proactive, demonstrated self, and team motivator
• Make timely and high-quality decision

Company Overview

We exist to make food the world loves. But we do more than that. Our company is a place that prioritizes being a force for good, a place to expand learning, explore new perspectives and reimagine new possibilities, every day. We look for people who want to bring their best — bold thinkers with big hearts who challenge one other and grow together. Because becoming the undisputed leader in food means surrounding ourselves with people who are hungry for what’s next.