Sr. InfoSec Engineer SOC bij Philip Morris International


Be a part of a revolutionary change At PMI, we’ve chosen to do something incredible. We’re totally transforming our business and building our future on smoke-free products with the power to improve the lives of a billion smokers worldwide. With huge change, comes huge opportunity. So, wherever you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and the space to move your career forward in endlessly different directions. PMI’s journey to a smoke-free future is fueled by technology. The total transformation we’re going through means that there are unique IT projects here to match all levels of skills and ambitions – from pace-setting global pilot projects to vital local updates. Whether you want to pursue a personal passion or build an international career, there’s space here to develop in any number of directions. Join us in this role and you’ll be part of our IT Information Security international team in Seoul, Korea. The mission The primary mission Security Operation Center is to push the limits of PMI’s threat detection capabilities. The SOC is part of the Cyber Defense team and is involved in the management and investigation of Security Alerts and Incidents that are related, but not limited to, Operational data, Intellectual property, Employee Information and Customer/Partner data. The Senior InfoSec Engineer SOC’s primary role is to understand the normal state of operations and detect malicious activity thanks to a broad spectrum of detection and response technologies (EDR, SIEM, SOAR…). Researching more efficient ways to detect and handle different types of threats. Collaborating with IT stakeholders and other members of the Infosec Team (e.g. Incident Response Team, Threat Intel Team, Threat Defense Operations team) during detection and response activities. Your “day to day” • Be part of a global team of senior InfoSec engineers distributed across Latin America, Europe, and East-Asia. • Provide security expertise to support detection & analysis of malicious activity from the SOC T1 team. • Make tactical decisions to block identified threats on PMI perimeter (e.g. malware, IP, e-mail…). • Promote severe alerts to incidents and work in tandem with the Incident Response team during analysis, containment, and eradication activities. • Work in a highly automated environment and provide ideas and feedto develop the SOAR platform, improve detection and hunting capabilities. • Participate in a variety of SOC projects to adapt our detection and handling strategies to the evolution of cyber threats. • Perform Digital Forensics activities. Who we’re looking for • 3+ years’ experience performing detection and response activities in various and complex environments (IT, OT, Cloud) • Good communication in English and experience working in the enterprise. • Curiosity and motivation to discover and stop new attack techniques. • Experience with scripting and automation. • Experience performing forensics analysis on Windows, Mac, iOS/Android. • Ability to support "on call" rotation, including weekends. • Desire to share knowledge, build trust, and develop growth-mindset within a global multicultural team. What we offer Our success depends on the men and women who come to work every single day with a sense of purpose and an appetite for progress. Join PMI and you too can: • Seize the freedom to define your future and ours – we’ll empower you to take risks, experiment and explore • Be part of an inclusive, diverse culture, where everyone’s contribution is respected; collaborate with some of the world’s best people and feel like you belong • Pursue your ambitions and develop your skills with a global business – our staggering size and scale provides endless opportunities to progress • Take pride in delivering our promise to society: to improve the lives of a billion smokers

Vergeet niet te vermelden dat je deze vacature gevonden hebt via Graduateland