Security Operations Center Analyst III at Sysco

Company:

US6469 Sysco Payroll, Division of Sysco Resources Services, LLC

Sales Territory:

US-TX-Houston

Zip Code:

77077

Travel Percentage:

0

COMPENSATIONINFORMATION:

The pay range provided is not indicative of Sysco’s actual pay range but is merely algorithmic and provided for generalized comparison. Factors that may be used to determine rate of pay include specific skills, work location, work experience and other individualized factors

Job Summary:

This position sits within the Vulnerability and Threat Management program at Sysco where you’ll use defensive measures and information collected from a variety of sources to identify, analyze, and report cybersecurity events that occur or might occur within the Sysco network to protect information, resources, and networks from threats.

Duties and Responsibilities:

• Receive, characterize, and analyze endpoint and network alerts from various sources within the enterprise and determine possible causes of such alerts to identify anomalous activity and potential threats to network resources and users
• Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities
• Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
• Serve as an escalation point to SOC Analysts providing support, guidance, as well as work and track security incidents through final resolution
• Create and maintain incident response processes, procedures and blueprints. Documenting and maintaining knowledge base of incident methodologies and plans

Education Required:

• Security Certification

Education Preferred:

• Security+, CEH, OSCP/OSCE, CISSP, CISA, or GIAC

Experience Required:

• Minimum 7 years in IT 5 years in Incident Response

Experience Preferred:

• 10 years in IT, Minimum 7 years in Incident Response

Licenses/Certification Required:

• Security Certification

Licenses/Certification Required:

• Security+, CEH, OSCP/OSCE, CISSP, CISA, or GIAC

Skills and Abilities:

• 5+ years of cybersecurity incident response experience with excellent background in networking and security to include intrusion detection/prevention
• Excellent knowledge of security applications such as IDS, IPS, EDR, SIEM, next-gen AV and anomaly detection tools
• Knowledge of cyber attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks.)
• Excellent knowledge of the 6 phases in Cyber incident response plan
• Wide knowledge of application and IT product diversity, interoperability, and extensive knowledge in IT security
• Ability to configure and conduct vulnerability scans using VM tools such as Tenable.io and Tanium

Physical Demands:

• Reasonable accommodations will be made to enable individuals with disabilities to perform the essential functions of this job.

Work Environment:

• Hybrid 3-4 Days in Office

BENEFITS INFORMATION:

For information on Sysco’s Benefits, please visit https://SyscoBenefits.com

OVERVIEW:

Sysco is the global leader in foodservice distribution. With over 71,000 colleagues and a fleet of over 13,000 vehicles, Sysco operates approximately 333 distribution facilities worldwide and serves more than 700,000 customer locations.

We offer our colleagues the opportunity to grow personally and professionally, to contribute to the success of a dynamic organization, and to serve others in a manner that exceeds their expectations. We’re looking for talented, hard-working individuals to join our team. Come grow with us and let us show you why Sysco is at the heart of food and service.

AFFIRMATIVE ACTION STATEMENT:

Applicants must be currently authorized to work in the United States.

We are proud to be an Equal Opportunity and Affirmative Action employer, and consider qualified applicants without regard to race, color, creed, religion, ancestry, national origin, sex, sexual orientation, gender identity, age, disability, veteran status or any other protected factor under federal, state or local law.

This opportunity is available through Sysco Corporation, its subsidiaries and affiliates.