Lead Security Analyst – Incident Response

Lead Security Analyst – Incident Response page is loaded## Lead Security Analyst – Incident Response locations:
USA - NJ - Camden time type:
Full time posted on:
Posted Todayjob requisition :
Req-60797
** Since 1869, we've connected people through food they love. We’re proud to be stewards of amazing brands that people trust. Our portfolio includes the iconic Campbell’s brand, as well as Cape Cod, Chunky, Goldfish, Kettle Brand, Lance, Late July, Pacific Foods, Pepperidge Farm, Prego, Pace, Rao’s Homemade, Snack Factory, Snyder’s of Hanover. Swanson, and V8.
**** Here, you will make a difference every day. You will be supported to build a rewarding career with opportunities to grow, innovate and inspire. Make history with us.
**** Why Campbell’s…
*** Benefits begin on day one and include medical, dental, short and long-term disability, AD&D, and life insurance (for individual, families, and domestic partners).
* Employees are eligible for our matching 401(k) plan and can enroll on the first day of employment with immediate vesting.
* Campbell’s offers unlimited sick time along with paid time off and holiday pay.
* If in WHQ – free access to the fitness center. Access to on-site day care (operated by Bright Horizons) and company store.
* Giving back to the communities where our employees work and live is very important to Campbell’s.
Our “Campbell’s Cares” program matches employee donations and/or volunteer activity up to $1,500 annually.
* Campbell’s has a variety of Employee Resource Groups (ERGs) to support employees.
** How you will make history here…
** As a key member of Campbell’s Cybersecurity Incident Response Team this individual will be responsible for detection, validation, containment, remediation, and communication for cybersecurity events and incidents such as malware infections, potential system compromises, Distributed Denial of Service (DDoS) attacks, and privacy breaches. This individual will be a key member on a team responsible for the rapid response and resolution of security incidents across the Campbell footprint including on-premises, the Cloud, and third-party hosted applications.

This role involves working with internal and external teams to identify root causes, restore services and communicate status to affected stakeholders. In addition, the individual will be involved in activities to improve the security posture and incident response capabilities of the organization including process automation, purple team testing, metrics reporting and threat hunting.
** What you will do…
** 50% - Incident Response
* Perform cybersecurity incident response including security event analysis, incident handling, reporting, and threat analysis. The role involves coordination with Campbell’s third-party Managed Security Services Provider (MSSP), internal information technology teams and other parties who may be engaged in the event of a cybersecurity event or incident.
* Analyze and triage events, anomalies, and incidents to ensure appropriate identification of risk to company systems and information whether on-premises, in the Cloud or managed by a third party.
* Lead, oversee and participate in the forensic analysis of cybersecurity incidents.
* Communicate and coordinate response efforts including working with the third-party MSSP, Information Technology teams, Business Leaders, Legal, Chief Security Officer and other Third Parties to mitigate the impact of a security or privacy breach.
* Prepare situation reports, escalate to leadership, and perform root cause analysis.
* Develop and report KPI’s to enable continuous improvement of information security risk management controls.
25% - Enhance/Implement Capabilities to Strengthen Detection and Response Capabilities
* Share lessons learned from incident response and threat hunting to strengthen detection and response capabilities.
* Model insider and external threats to Campbell’s systems and data.
* Assess existing detection and response capabilities and provide recommendations for improvement.
* Leverage security orchestration (SOAR) to automate security response procedures.
* Maintain and enhance security monitoring and incident response procedural…