Senior Information Security Analyst

Job Description

Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.

You will work in the Cybersecurity Incident Response Center at MDLZ as a Senior Information Security Analyst.

As a Senior Incident Response Analyst you will play a vital role in strengthening MDLZ security measures. You will investigate and respond to security incidents, collaborate with cross‑functional teams, and drive resolution to complex cybersecurity issues within our environment. Your expertise will contribute strong and well‑designed Incident Response techniques, processes, and capabilities. You will be asked to partner on improvements both within and outside of the security domain to drive increases in team, department, and organizational maturity.

• Take ownership of enhancing our security posture and protecting MDLZ infrastructure
• Be adept at technical writing
• Capable of communicating with both technical and nontechnical stakeholders across all levels including C‑suite
• Develop and execute comprehensive containment, eradication, and recovery strategies, prioritizing business continuity and minimizing disruption to business processes
• Collaborate closely with a wide range of technical and non‑technical teams across business functions and geographies, effectively scoping, tailoring, and triaging incident information for diverse audiences, including C‑suite executives
• Perform in‑depth malware analysis, network forensics, log analysis, and reverse engineering to identify root causes, establish timelines, and uncover Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs)
• Contribute significantly to the continuous review, refinement, and expansion of incident response playbooks, runbooks, and Standard Operating Procedures (SOPs)
• Embody a passion for growth and drive for continuous learning
• Act as a coach and mentor to other analysts, elevating skills and contributing to overall uplift of our global cybersecurity capabilities
• Perform “lessons learned” reviews for significant incidents, identifying systemic weaknesses and driving recommendations for security control improvements
• Contribute to team’s expansive skill set across topics such as reverse‑engineering, cloud security, process development, scripting in Python, Power Shell, Bash, C/C++, IC‑S protocols, AI‑based automation, and more

• Global Cybersecurity Incident Response Team with a rotational on‑call schedule
• Monitor computer environments for security issues
• Perform Threat Analysis on events reported by security tools, external parties, and internal SMEs
• Investigate security breaches and other cybersecurity events/incident
• Contribute to Root‑Cause Analysis, Lessons Learned, and Corrective Action Reporting
• Create executive summaries, status reports and supply metrics to relevant stakeholders independently
• Participate in special projects as needed

• Bachelor’s Degree in Information Technology, Cybersecurity, Computer Science or similar
• Hold professional certifications through certifying bodies such as:
• CompTIA:
  Security+, CySA+, SANS‑GIAC GCIH, GDAT, GPEN, GCFE, GRID
• ISC2: CISSP
• Offsec: OCSP, OSIR

• 3‑6+ years experience in Incident Response, Information Security, SOC, Forensics, Purple‑teaming, or related field
• Knowledge/Experience in:
• SIEM (e.g., Splunk, Humio), SOAR (e.g., Cyware, Splunk, XSOAR), Endpoint Security (EDR) (e.g., Carbon Black, Crowdstrike, Defender), Email Security (e.g., Proofpoint, O365AT
  P), Firewalls, WAF, IDS/IPS, Web Content Filtering, Proxies, Database, Data Loss Prevention (DLP), Identity and Access Management (IAM), Cloud Computing Services, Scripting, MITRE ATT&CK Framework and Incident Response, NIST, Cloud Compute (e.g., AWS, GCP, Azure), Cloud Native Application Protection (e.g., Forcepoint ONE, Wiz, Orca)

• Occasional

• Remote
• On‑call

No Relocation support available

Headquartered in Singapore, Mondelēz International’s Asia, Middle East and Africa (AMEA) region is comprised of six business units and operates in more than 27 countries.

Mondelēz International is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation or preference, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Mondelez Global LLC is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law.