Sr. D&t Analyst – Cyber Security, Incident Response

India is among the top ten priority markets for General Mills and hosts our Global Shared Services Centre This is the Global Shared Services arm of General Mills Inc which supports its operations worldwide With over 1 300 employees in Mumbai the center has capabilities in the areas of Supply Chain Finance HR Digital and Technology Sales Capabilities Consumer Insights ITQ R D Quality and Enterprise Business Services Learning and capacity-building is a key ingredient of our success Position Title Sr D T Analyst Cyber Security Incident Response Function Group Digital Technology Location Mumbai Shift Timing 24x7 - rotating shifts Role Reports to D T Manager - Cyber Security Incident Response Remote Hybrid in-Office In-Office ABOUT GENERAL MILLS We make food the world loves 100 brands In 100 countries Across six continents With iconic brands like Cheerios Pillsbury Betty Crocker Nature Valley and Haagen-Dazs we ve been serving up food the world loves for 155 years and counting Each of our brands has a unique story to tell How we make our food is as important as the food we make Our values are baked into our legacy and continue to accelerate us into the future as an innovative force for good General Mills was founded in 1866 when Cadwallader Washburn boldly bought the largest flour mill west of the Mississippi That pioneering spirit lives on today through our leadership team who upholds a vision of relentless innovation while being a force for good For more details check out General Mills India Center GIC is our global capability center in Mumbai that works as an extension of our global organization delivering business value service excellence and growth while standing for good for our planet and people With our team of 1800 professionals we deliver superior value across the areas of Supply chain SC Digital Technology D T Innovation Technology Quality ITQ Consumer and Market Intelligence CMI Sales Strategy Intelligence SSI Global Shared Services GSS Finance Shared Services FSS and Human Resources Shared Services HRSS For more details check out We advocate for advancing equity and inclusion to create more equitable workplaces and a better tomorrow JOB OVERVIEW Function Overview The Digital and Technology team at General Mills stands as the largest and foremost unit dedicated to exploring the latest trends and innovations in technology while leading the adoption of cutting-edge technologies across the organization Collaborating closely with global business teams the focus is on understanding business models and identifying opportunities to leverage technology for increased efficiency and disruption The team s expertise spans a wide range of areas including AI ML Data Science IoT NLP Cloud Infrastructure RPA and Automation Digital Transformation Cyber Security Blockchain SAP S4 HANA and Enterprise Architecture The MillsWorks initiative embodies an agile scale delivery model where business and technology teams operate cohesively in pods with a unified mission to deliver value for the company Employees working on significant technology projects are recognized as Digital Transformation change agents The team places a strong emphasis on service partnerships and employee engagement with a commitment to advancing equity and supporting communities In fostering an inclusive culture the team values individuals passionate about learning and growing with technology exemplified by the Work with Heart philosophy emphasizing results over facetime Those intrigued by the prospect of contributing to the digital transformation journey of a Fortune 500 company are encouraged to explore more details about the function through the following Cyber Security is a critical part of Digital and Technology function We leverage the NIST Cybersecurity Framework key cybersecurity partners and external benchmarking to guide the development of our program Cybersecurity risk is managed as part of enterprise risk at GMI We assess technical cybersecurity risks and vulnerabilities and provide recommendations to mitigate them We design and manage cybersecurity infrastructure identities and controls and we monitor for any threats and ensure timely and comprehensive response to cyber-attacks We also measure and report compliance to cybersecurity policies and standards Purpose of the role Cyber Security team of General Mills India Centre is looking for a passionate and enthusiastic individual As a Sr CSIRT Analyst responsible for handling daily escalations while helping team on deep dive investigations and root cause analysis of the security events on 24x7 basis by ensuring alignment to SLAs Individual should bring in proactive approach to solve complex investigations and analyze malware through GMI Open source tools They should have ability to lead shifts and specific capabilities for matured Incident Response process KEY ACCOUNTABILITIES Technical Responsibilities Demonstrate ability to work in 24x7 facility in rotating shifts This role will act as Capability Lead for Incident Response team and is responsible for providing key inputs on the Incident response maturity across D T Ensuring smooth build of Cloud Security Threat Hunting and Advanced Incident response Thorough knowledge and adequate experience on Security Incident Event Management SIEM system and SOAR Technologies Expert level skills in log correlation deep dive malware investigations and root cause analysis Ability to help in Incident response maturity planning Responsible for planning CSIRT Team learnings Help in Medium severity incidents Responsible for fine tunings and allowlistings ensuring relatively less false positives Creation of SOAR Playbook use cases and deployment Key contact from CSIRT for Purple team exercises Good understanding of networking fundamentals protocols Good understanding of Cyber Security principles and MITRE framework Achieve containment time SLA defined Escalate cybersecurity events according to General Mills Cybersecurity Incident Response Plan and follow escalation path Quick learner good analytical skill and action oriented Agility in incident response Functional Responsibilities Leading a Capability for end to end maturity goals Relation building and effective collaboration with various global teams Leadership skills ownership mindset delegation skills presentation skills and quick decision-making skills Effectively communicate with stakeholders and help team to grow Working in ambiguity navigate and influence Make timely and high-quality decision Create required reports Weekly Monthly etc and present to stakeholders Ensuring the enhanced investigation skills for the team creating scenarios and knowledge sharing Create better solutions through tireless curiosity and innovation stretching beyond your area of expertise Must-have Technical Skills and Experience Demonstrate ability to work in 24x7 facility in rotating shifts Demonstrated ability to get things done both independently and in a collaborative team-oriented environment Understanding of networks network security IDS IPS Firewall etc SIEM SOAR and Endpoint detection and response EDR Handson experience in incident response processes and tools to detect analyze respond and contain cyber security threats quickly and correctly Understanding in forensic techniques used to analyze threats including malware to extract key indicators of attack and compromise Knowledge in tools and techniques used by attackers to gain unauthorized access to systems Good understanding of Cyber Security principles and MITRE framework Deep understanding on Phishing tactics and Windows endpoint investigation Analyze malware in a sandbox environment to understand impact MINIMUM QUALIFICATIONS Education - Full time graduation from an accredited university Mandatory- Note This is the minimum education criteria which cannot be altered Related work experience - 6-8 years Technologies - SIEM and SOAR knowledge EDR investigations networking protocols Cyber principles Good communication skills PREFERRED QUALIFICATIONS Certification like Certified Ethical Hacker CEH CompTIA Cybersecurity Analyst CySA EC-Council Certified Incident Handler ECIH Certified Information Systems Security Professional CISSP COMPANY OVERVIEW We exist to make food the world loves But we do more than that Our company is a place that prioritizes being a force for good a place to expand learning explore new perspectives and reimagine new possibilities every day We look for people who want to bring their best bold thinkers with big hearts who challenge one other and grow together Because becoming the undisputed leader in food means surrounding ourselves with people who are hungry for what s next