Senior InfoSec Incident Response Engineer
Philip Morris International
Albarraque, Portugal
há 3 dias

MAKE HISTORY WITH US!At PMI, we’ve chosen to do something incredible. We’re totally transforming our business and building our future on smoke-free products with the power to deliver a smoke-free future.

With huge change, comes huge opportunity. So, wherever you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and the space to move your career forward in endlessly different directions.

As a Philip Morris Incident Response Consultant, you will work within established methodologies to perform a variety of Incident Response related activities.

This will include emergency response to cyber incidents, proactively hunting for adversaries across the estate, designing and performing Table-Top Exercises.

The Incident Response Consultant will also be responsible for leading and working on projects that will support tactical and strategic business objectives.

Demonstration of leadership abilities, clear and concise communication with a variety of stakeholders, ability to lead during a crisis, personal agility to adapt to changing environments, and a strong comprehension of malware, emerging threats and calculating risk will be critical to success.

Who You’ll Work With When you work with us, you’ll be part of a global team of highly empowered Incident Response professionals who work as a collaborative team focused on helping the business be both better prepared to defend against adversaries, as well as responding to active incidents within our network.

Who You Are We are looking for a charismatic, articulate individual, and a born diplomat. You check your ego at the door and learn from others constantly, while also helping to educate those who aren’t as well versed as you are in technical or procedural topics.

As a result, you have a track record of working tirelessly to help the business and your teammates and have even come up with some novel techniques in your time. Required Skills :

  • Respond to global cyber incidents caused by internal and external threats to our business, that may involve non-traditional working hours.
  • Must be willing to routinely travel with less than 24-hour notice (when international travel resumes)
  • Can clearly communicate the Incident Response Lifecycle and the Kill Chain (Attack) Life Cycle.
  • Demonstrate capability to map technical findings to business impacts and communicate those in a manner which is understandable by a non-technical audience.
  • Be able to scope an incident, gain consensus on objectives with our stakeholders, and lead a team of incident response consultants during an emergency engagement.
  • Specialize in host centric analysis utilizing a variety of forensic tools (e.g. SIFT, Volatility, Defender ATP, etc )
  • Specialize in network forensic analysis with a strong understanding of network protocols
  • Adept at malware reverse engineering.
  • Good scripting capabilities.
  • Design, lead and participate in Table-Top Exercises with the business.
  • Proactively hunt for adversaries leveraging a variety of tools and techniques
  • Draft communications, assessments, and reports to include leadership and executive management
  • Understanding of different attacks and how best to design custom detection, containment, and remediation plans
  • Serve as a liaison to different businesses and interface with fellow team members and colleagues on other security teams.
  • As-needed, manage relationships with business partners, management, vendors, and external parties

  • Lead projects as directed
  • Be a champion for the process. Develop and document processes to ensure consistent and scalable response operations
  • Demonstrate industry leadership through blog posts and public speaking at conferences and events
  • Bachelors' Degree in Computer Science or a related technical degree; or, equivalent industry experience.
  • Minimum 5 years of experience in information security and 4 years of experience handling incidents
  • Must be willing to be on-call and work off-shift hours, to include nights, weekends, and holidays on rotation with other team members Desired Characteristics :
  • Detailed understanding of current cyber security threats, attacks, and countermeasures. Such as Advanced Persistent Threat (APT), Cyber Crime, Hacktivism and associated tactics
  • Strong track record of understanding and interest in recognized IT Security-related standards and technologies, demonstrated through training, job experience and / or industry activities.
  • IT Security Certifications :

  • Industry certifications such as the CISSP, GCIH, GCFA, GREM, CREST CRIA, CHIA, CNIA What you can expect from the company?
  • Our success depends on the men and women who come to work every single day with a sense of purpose and an appetite for progress. Join PMI and you too can :

  • Seize the freedom to define your future and ours. We’ll empower you to take risks, experiment and explore;
  • Be part of an inclusive, diverse culture, where everyone’s contribution is respected; collaborate with some of the world’s best people and feel like you belong;
  • Pursue your ambitions and develop your skills with a global business our staggering size and scale provides endless opportunities to progress;
  • Take pride in delivering our promise to society : to deliver a smoke-free future. WHAT WE OFFER YOU?
  • Private health insurance for you and your household;
  • Life Insurance;
  • Employee pension plan;
  • Lunch card (Ticket);
  • 26 vacations days;
  • Wide range of trainings.
  • Reportar esta oferta de trabalho

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Meu email
    Ao clicar em "Continuar", autorizo a neuvoo a processar os meus dados e a enviar-me alertas de e-mail, conforme detalhado na Política de Privacidade da neuvoo . Posso retirar o meu consentimento ou cancelar a subscrição a qualquer momento.
    Formulário de candidatura