Sr. IT Security Analyst

KFC•Louisville, TX

About The Position

As a Senior Information Security Analyst supporting the Yum! Cybersecurity team, as an individual contributor, you will serve as the primary escalation point for the Security Information and Event Management (SIEM) platform, and the Security Operations Center (SOC). This is a global role within the world’s largest restaurant company. More specifically, within the Security Services organization that services over 53,000 restaurants, as well as the infrastructure, systems, and cloud solutions it takes run a large-scale distributed enterprise across 150+ countries and growing. As a Senior Information Security Analyst, you will frequently have interactions with members of all brand Security and IT teams as well as the third parties who provide the platforms that the services operate on. While working in a dynamic, global environment, you will be responsible for responding to, researching, and addressing network security events. Your primary duties will allow you to use your in-depth technical knowledge to enhance the security posture of our internal systems and third-party solutions. Occasional on-call duties may be required.

Requirements

Effective tactical and strategic communication skills with technical, non-technical, and executive leadership.
1 to 3 years’ experience of working in a high-performance Cyber SOC team in a cyber-security College Degree in Cyber Security or Information Technology or equivalent work experience.
Certifications like CCNA, Security+, Network+, GCIH, GSOC, GSEC, GSED, GMON focused organization serving large scale enterprise customers
Experience with an enterprise-grade SIEM platform (e.g. QRadar, LogRhythm, CrowdStrike)
Working knowledge in network access control, intrusion prevention & detection systems, firewalls, routers, incident response, information security methods & risk management
Working knowledge of the Cyber Kill Chain
Experience in high volume environments handling billions of records per day
Experience in Security Event analysis & triage, incident handling & root-cause identification
Proficiency in TCP/IP & other network protocols
Passion and enthusiasm for Cyber Security
Experience with Red/ Blue team exercises & Table Top exercises
Experience running of one or more services within a Security Operations Center
Excellent time management & problem-solving skills
Effective Communication, including verbal, report writing & presentations skills
Ability to deal with complexity & uncertainty
Analysis & interpretation of data into useful management

Responsibilities

Using our SIEM platform to fully investigate network security events, documenting investigations in writing via ticketing system, communicating with stakeholders, and resolving identified issues.
Gathering and analyzing intelligence from a variety of sources and communicating a summary of impactful intelligence to internal stakeholders.
Identifying tuning opportunities and additional SIEM rules/use cases based on the ever-changing threat landscape and needs of the organization.
Providing threat and vulnerability management oversight and communicating threat and vulnerability observations clearly to leaders and subject matter experts, properly relaying risk factors.
Working with other Subject Matter Experts within the Security Services team to deliver a unified security service experience to all markets while also leveraging each other’s expertise and services to improve existing processes.
Working closely with the Log Collection and Platform management team to identify and implement automations for common use cases for more efficient response and resolution.
Leading brand collaboration calls to highlight detections identified within the market, including details such as resolution status and follow up, to ensure events are fully documented and resolved.