Staff Engineer- Sr.Cybersecurity Incident Manager
Kenvue
- Bangalore, Karnataka
- Permanent
- Full-time
- Lead and coordinate cybersecurity incident response activities, including triage, containment, investigation, and remediation of security incidents across the organization.
- Perform in-depth eDiscovery and forensic investigations to identify the root cause and extent of security incidents, breaches, or data compromises.
- Utilize cutting-edge technologies and tools to analyze and respond to cyber threats, vulnerabilities, and incidents, with a particular focus on cloud platforms.
- Develop and maintain incident response playbooks, standard operating procedures (SOPs), and best practices to enhance the organization's incident response capabilities.
- Collaborate with cross-functional teams, including IT, legal, and compliance, to ensure the effective resolution of security incidents while adhering to regulatory and legal requirements.
- Conduct post-incident analysis and produce comprehensive incident reports, including lessons learned, mitigation strategies, and recommendations for enhancing cybersecurity posture.
- Stay up to date with the latest cybersecurity threats, attack vectors, and industry trends to proactively identify potential vulnerabilities and recommend security enhancements.
- Act as a subject matter expert (SME) and provide guidance and mentorship to junior members of the incident response team.
- Assist in the evaluation, deployment, and configuration of security tools, including Microsoft Defender and Sentinel products, to enhance detection and response capabilities.
- Conduct regular vulnerability assessments and penetration tests to identify and address potential weaknesses in the organization's infrastructure.
- Collaborate with third-party vendors and external stakeholders during incident response activities, forensic investigations, or legal proceedings, ensuring compliance with applicable regulations and laws.
- Bachelor's degree in Computer Science, Information Security, or a related field. Equivalent work experience will be considered.
- Minimum of 10 years of experience in cybersecurity incident response, eDiscovery, and forensic investigations.
- Strong expertise in cloud platforms (such as AWS, Azure) and experience with securing cloud environments.
- Proficiency in Microsoft Defender and Sentinel products is strongly preferred.
- Solid understanding of incident response methodologies, tools, and best practices.
- Familiarity with eDiscovery processes, legal hold, and forensic investigation techniques.
- Demonstrated experience in analyzing security logs, network traffic, and system events to identify potential threats and intrusions.
- Excellent analytical and problem-solving skills, with the ability to make sound decisions under pressure.
- Effective communication and interpersonal skills to collaborate with cross-functional teams, stakeholders, and external parties.
- Professional certifications such as CISSP, CISM, GCIH, or equivalent are highly desirable.
- Proven ability to lead and mentor junior team members and provide guidance in complex incident response scenarios.