• Job Description

  Req#: R-157329

  Job Description

  Are You Ready to Make It Happen at Mondelēz International?

  • Contribute measurably to goals of enhancing our security posture and protecting MDLZ infrastructure

  • Be adept at technical writing

  • Capable of communicating with both technical and nontechnical stakeholders across all levels including C-suite with ability to scope, tailor, and triage information shared to the roles and business priorities of audiences

  • Contribute to comprehensive containment, eradication, and recovery strategies, prioritizing business continuity and minimizing disruption to business processes. Help to c oordinate response activities with incident response teams, internal stakeholders , and external partners. Follow established and best-practice incident response procedures while iterat ing as nec essary for novel events.

  • Collaborate closely with a wide range of technical and non-technical teams across business functions and geographies. Assist with scope, tailor ing , and triage of event/ incident information for diverse audiences, including C-suite executives, providing clear, concise, and timely updates.

  • Contribute to in-depth malware analysis, network forensics, log analysis, and reverse engineering to identify root causes, establish timelines, and uncover Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) both independent ly and in partnership with security, technology , and business roles .

  • Contribute to the continuous review, refinement, and expansion of incident response playbooks, runbooks, and Standard Operating Procedures (SOPs), aligning them with industry best practices (e.g., NIST, MITRE) and our unique global context.

  • Embody a passion for growth and a drive for continuous learning

  • Act as peer and partner with other analysts, contributing to overall uplift of our global cybersecurity capabilities through effective teamwork .

  • Contribute to "lessons learned" reviews for significant incidents, identifying systemic weaknesses and assisting with generation of recommendations for security control improvements, architectural enhancements, and organizational changes to prevent recurrence.

  • Contribute to team’s expansive skill set and work to expand your own skills across topics like reverse-engineering, cloud security, process development, scripting in Python, PowerShell, Bash, C/C++, ICS protocols, AI-based automation , and more

  More about this role

  What you need to know about this position:

  • • Global Cybersecurity Incident Response Team with a rotational on-call schedule

    • Monitor computer environments for security issues

    • Perform Threat Analysis on events reported by s ecurity t ools , external parties, and internal SMEs

    • Assist team with i nvestigat ion of security breaches and other cybersecurity ev ents and incidents

    • Contribute to R oot C ause A nalysis, L essons L earned, and C orrective A ction Reporting

    • C ontrib u te to executive summaries, s tatus r eport s and supply metrics to relevant stakeholders

    • Participate in special projects as needed

  What extra ingredients you will bring:

  Education / Certifications:

  • Bachelor’s Degree in Information Technology , Cybersecurity, Computer Science or similar.

  • Hold p rofessional certifications through certifying bodies like :

  • CompTIA: Security+, CySA +

  • SANS-GIAC: GCIH, GDAT, GPEN, GCFE, GRI D

  • ISC2: CISSP

  • Offsec : OCSP, OSIR

  Job specific requirements:

  • 3- 6+ years experience in I ncident R esponse, I nformation S ecurity, SOC , Forensics, Purple-teaming, or related field

  • Knowledge/Experience i n:

  • SIEM ( ie Splunk, Humio ), SOAR ( ie Cyware , Splunk, XSOAR ), Endpoint Security (EDR) ( ie CarbonBlack , Crowdstrike , Defender ), Email Security ( ie . Proo f point, O365 ATP ), Firewalls, WAF, IDS/IPS, Web Content Filtering, Proxies, Database, Data Loss Prevention (DLP), Identity and Access Management (IAM), Cloud Computing Services, Scripting, MITRE ATT&CK Framework and Incident Response , NIST, Cloud Compute ( ie AWS, GCP, Azure ), Cloud Native Application Protection ( ie Forcepoint ONE , Wiz, Orca )

  Travel requirements:

  • Occasional

  Work schedule:

  • Remote

  • On-call

  No Relocation support available

  Business Unit Summary

  Headquartered in Singapore, Mondelēz International’s Asia, Middle East and Africa (AMEA) region is comprised of six business units, has more than 21,000 employees and operates in more than 27 countries including Australia, China, Indonesia, Ghana, India, Japan, Malaysia, New Zealand, Nigeria, Philippines, Saudi Arabia, South Africa, Thailand, United Arab Emirates and Vietnam. Seventy-six nationalities work across a network of more than 35 manufacturing plants, three global research and development technical centers and in offices stretching from Auckland, New Zealand to Casablanca, Morocco. Mondelēz International in the AMEA region is the proud maker of global and local iconic brands such as Oreo and belVita biscuits, Kinh Do mooncakes, Cadbury, Cadbury Dairy Milk and Milka chocolate, Halls candy, Stride gum, Tang powdered beverage and Philadelphia cheese. We are also proud to be named a Top Employer in many of our markets.

  Mondelēz International is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation or preference, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.

  Job Type

  Regular

  Information Security

  Technology & Digital

• About the company

  Mondelez International, Inc., often stylized as Mondelēz, is an American multinational confectionery, food, holding and beverage and snack food company based in Chicago, Illinois.

Notice