Cybersecurity Incident Commander
Warszawa, Poland
6 d. temu

Job Description

The Enterprise Incident Response Commander is responsible for cross-enterprise response and coordination of large scale or significant business-

impacting cyber security incidents in a complex, global Fortune 50 enterprise. This includes responsibility for the cyber security incident response plan maintenance, conducting cyber tabletop exercises, acting as a liaison on third party incidents, providing executive awareness and communications on significant incidents and threats, managing incident response retainers and global threat management and response program initiatives including gap identification and program maturity recommendations.

Serves as the enterprise incident manager for significant or high-profile incidents including validating and escalating incidents, coordinating cross-

enterprise response activities, facilitating information sharing and conducting reporting

Provides strategic guidance on and tracking of tools / visibility / capabilities gaps affecting PepsiCo’s information security posture

Responsible for maintaining the Enterprise Incident Management capability which includes driving enhancements to incident response strategy

Serves as liaison between technical response and the business to minimize the impact of an incident and maintain business operations

Coordinates response activities in partnership with global incident managers for medium, high and critical priority incidents

Coordinates and directs efforts among the CSIRT throughout the incident response lifecycle

Provides timely and relevant updates to appropriate executive stakeholders and decision makers

Conducts after action reporting and provides relevant insights to guide improvements and adjustments to PepsiCo’s information security posture

Tests and maintains incident response plans and processes to address existing and emerging threats

Maintains strong working relationships with cyber fusion center functions to maintain situational awareness of potential risks to the PepsiCo environment

Organizes, conducts and maintains documentation for executive and targeted functional table-top exercises

Maintains incident response retainers and provides coordination of these third parties when activated

Acts in an advisory capacity and as a liaison for third party incidents

Leads special projects related to the Global Threat Management and Response program

Participation in after-hours incidents when required

  • div dir "ltr" style "margin : 0px 0px 0pt; padding : 0px; border : 0px; font-size : 14px; vertical-align : baseline; color : rgb(18, 18, 18);
  • font-family : Tahoma; line-height : normal;">


    Qualifications / Requirements

    Expected experience :

    7+ years of experience in information security incident handling and / or security operations

    Experience with large scale and complex incidents of all types to include APT, DDOS, insider, web and mobile applications, data exfiltration etc

    Demonstrated ability to perform independent analysis of complex problems and distill relevant findings and root cause

    A broad and deep understanding of cyber-security threats, vulnerabilities, controls and remediation strategies in global enterprise environments

    Knowledge of technologies, systems and networks as well as typical gaps that could impact the ability of an organization to effectively detect and respond to cyber attacks

    Demonstrated knowledge of common adversary tactics, techniques, and procedures

    Strong foundational knowledge in information technology, to include hardware, networking, architecture, protocols, files systems and operating systems.

    Bachelor’s degree in Information Technology, related discipline or relevant work experience

    Relevant Technical Security Certifications (GIAC, CISSP, SSCP, CISM, EC-Council, Offensive Security, etc) is a plus

    Soft and organizational skills :

    An ability to work well under pressure while maintaining a professional image and approach

    An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner

    An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business

    Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one

    An ability to effectively influence others to modify their opinions, plans, or behaviors

    A team-focused mentality with the proven ability to work effectively with diverse stakeholders

    Strong organizational skills with proven ability to manage multiple high visibility issues simultaneously

    Proactive attitude, seeking for improvement opportunities which can positively impact the security posture and the business

  • div dir "ltr" style "margin : 0px 0px 0pt; padding : 0px; border : 0px; font-size : 14px; vertical-align : baseline; color : rgb(18, 18, 18);
  • font-family : Tahoma; line-height : normal;">


    Relocation Eligible : Not Applicable

    Job Type : Regular

    Dodaj do ulubionych
    Usuń z ulubionych
    Mój adres email
    Klikając przycisk "Kontynuuj", wyrażam zgodę neuvoo na przetwarzanie moich danych i wysyłanie powiadomień e-mailem, zgodnie z zasadami przedstawionymi przez neuvoo. W każdej chwili mogę wycofać moją zgodę lub zrezygnować z subskrypcji.
    Formularz wniosku