Diligently monitoring our IT infrastructure and quickly responding to security incidents.
Analyzing sophisticated security data and deriving actionable intelligence to avert potential security breaches.
Refining our incident response strategies in collaboration with various business units and the Global Information Technology team.
Applying your skills across various operating systems and proficiency in security tools like SIEM, email, networking, and endpoint technologies to bolster our security measures in both on-premise and cloud environments, including GCP.
Engaging with individuals and teams across Colgate-Palmolive, you will articulate key security issues and drive our comprehensive cybersecurity agenda. Your role is pivotal in upholding Colgate-Palmolive s standards for cyber hygiene and in defending the companys resources against dynamic cyber threats. This role presents both a challenge and an opportunity to enhance the protection of Colgate-Palmolive s global digital infrastructure.
Who are you
You are a function expert, able to:
Monitor and analyze security events from various sources, such as SIEM, IDS/IPS, firewalls, and endpoint protection systems.
Investigate security incidents to determine impact and root cause, implementing and refining investigation and incident response procedures.
Conduct sophisticated threat analysis and proactive threat hunting to detect and remediate advanced persistent threats (APTs).
Ensure continuous monitoring of the organizations networks and systems, generating detailed documentation on security incidents, including findings, remediation steps, and recommendations.
Maintain and improve SOC documentation and operating procedures.
You connect the dots by:
Reviewing and analyzing incoming alerts from various security tools.
Correlating alerts with logs from other sources to identify patterns or anomalies.
Gathering contextual information about affected systems, users, and networks.
Integrating threat intelligence to enhance detection and response capabilities.
Analyzing user and entity behavior to identify deviations from normal patterns.
Constructing timelines of events and developing hypotheses about potential threats.
Collecting and preserving evidence, ensuring its integrity for further investigation.
Documenting all findings in detailed incident reports and escalating incidents when necessary.
Recommending actions to contain and mitigate threats and implementing remediation steps.
Conducting post-incident analyses to identify gaps and continuously improving detection rules and security measures.
You are a collaborator who can:
Work closely with other IT and security teams to address security issues and implement best practices.
Provide guidance and support to junior SOC analysts.
Communicate effectively with the Global SOC Manager, Team Lead, and other senior leaders on security incidents and status updates.
You are an innovator who will:
Stay ahead of the latest cybersecurity trends, technologies, and threats.
Find opportunities for process improvements and automation within the SOC.
Participate in post-incident reviews to identify lessons learned and areas for improvement.
What you ll need (Required)
- Bachelor s or Master s degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent experience).
- At least 3 years of experience in a SOC environment, with demonstrable experience in incident detection, response, and threat analysis.
- Solid grasp of cybersecurity principles, threat landscape, and incident response methodologies.
- Proficiency with security tools and technologies such as SIEM, IDS/IPS, firewalls, and endpoint protection.
- Excellent analytical and problem-solving skills.
- Effective communication and interpersonal skills.
What you ll need (Preferred):
- Relevant cybersecurity certifications (e.g., CompTIA Security+, CySA+, ISC(2) CC, CISSP, GSEC, GCHI, CEH, etc.) are highly desirable.
