Senior Analyst, Cybersecurity Operations (Detection & Response)

As a Senior Analyst you will oversee daytoday operations within the Security Operations program and report to the Senior Manager of Security Operations. You will manage security operations personnel policy enforcement security awareness and aid your team in achieving operational goals. You will lead initiatives focusing on Global Cyber Security (GCS) defensive measures and incident response. You and your team will support the daily security operations and Incident Response processes by aiding and responding in the event of a crisis or urgent situation to mitigate immediate and potential cyber threats. As needed you and your team will use mitigation preparedness response and recovery approaches to maximize the organizations security.

Working within the Incident Response team and coordinating with other Cyber Operations teams to identify and report on security incidents as they occur and overseeing endtoend remediation. Activities will include triaging security events network and endpoint analysis malware reverse engineering threat hunting vulnerability escalation and resolving security incidents from detection to remediation. As part of the Security Operations team you will create and implement standard operating procedures playbooks and processes to help streamline daily monitoring investigations and analysis research. The role works directly within GCS the organization responsible for our Cybersecurity Operations & Incident Response program and critical services ensuring our leadership makes informed riskbased decisions.

The ideal candidate for this managerial role should have the ability to lead and supervise a small team with limited oversight displaying expertise in cybersecurity practices cloud technologies detection and response frameworks and incident handling procedures (containment eradication recovery and lessons learned). They should excel in adhering to and enforcing the use of established incident response playbooks and practices possess an acute attention to detail and collaborate effectively across global crossfunctional teams. The candidate must have:

• Experience working in a security operations or incident response role
• A strong background in defensive measures and utilizing information from various sources to identify analyse and report network events.
• Expertise in leading resolution for security crises and urgent situations in security operations or incident response.
• Proficiency in computer networking concepts protocols and network security methodologies.
• A deep understanding of system and application security threats and vulnerabilities.
• Advanced knowledge of network attacks and their relationship to threats and vulnerabilities.
• Demonstrated skill in utilizing intrusion detection methodologies and techniques.
• Considerable experience providing oversight on common security operations principles and methods.
• Proven ability to lead and supervise a small team of analysts providing guidance support and mentorship to enhance their skills and performance.

Responsibilities:

• Provide leadership professional development and guidance to SOC staff and security operations team members.
• Align security operations daytoday priorities with operational strategies.
• Enforce policy standards and strategies to ensure compliance with organizational policies.
• Manage multiple projects to create new services improve procedures or implement solutions to enhance SOC efficiency.
• Advise senior management on risk levels and security posture providing cybersecurity recommendations based on significant threats and vulnerabilities.
• Gather maintain and analyse data to identify potential threats vulnerabilities and performance metrics related to SOC operations.
• Monitor and analyse system activity using security operations tools and analyse network alerts to determine possible root causes.
• Provide timely detection identification and alerting of attacks intrusions and misuse activities.
• Coordinate with stakeholders to validate network alerts and security events.
• Deliver technical documents incident reports findings from computer examinations and situational awareness information to leadership.
• Review event escalations for accuracy and completeness and follow the organizations cyber incident response plan.
• Perform security operations and incident response trend analysis and reporting.
• Develop signatures for defense network tools in response to new or observed threats within the network environment.

Desired Skills:

• Professional certification such as GIAC GCIH GCIA ITIL.
• Familiarity with NIST Risk Management Framework and NIST Cybersecurity Framework Cyber Kill Chain.
• Experience working with case management tools SOAR email security solutions SIEM and EDR technologies.
• Experience working with complex multinational companies and distributed business models.
• Experience developing automation through scripting languages such as Python.

Qualifications :

• Bachelors degree or equivalent experience in Computer Science Cybersecurity Information Technology Software Engineering Information Systems or Computer Engineering

Additional Information :

At McDonalds we are People from all Walks of Life... 

People are at the heart of everything we do and they make the McDonalds experience. We embrace diversity and are committed to creating an inclusive culture that means people can be their best authentic self in our restaurants and offices which helps us to better serve our customers. We have a strong heritage of diversity and representation within our communities which we are proud of. The diversity of our people customers Franchisees and suppliers gives us strength.

We do not tolerate inequality injustice or discrimination of any kind.  These are hugely important issues and a brand with our reach and relevance means we have a very meaningful role to play.

We also recognise our responsibility as a large employer to continue being active in our communities helping to develop skills and drive aspirations that will help people to be more aware of the world of work and more successful within it whether with McDonalds or elsewhere.

Remote Work :

No

Employment Type :

Fulltime