Back to vacancies
Mid - Senior
Cybersecurity

THE BIG PICTURE

Sysco LABS is the captive innovation center for Sysco Corporation (NYSE:SYY), a Fortune 100 company and the world’s largest foodservice provider with 71,000+ associates, 330+ distribution centers and over 725,000 customers in 90 countries. For fiscal 2023 that ended July 1, 2023, Sysco generated over $76 billion in sales.

Sysco LABS powers Sysco’s farm-to-fork operations and our technology is present in the sourcing of food products, merchandising, storage and warehouse operations, order placement and pricing algorithms, the delivery of food and supplies to Sysco’s global network, the in-restaurant dining experience of the end-customer and much more.

Our technology ecosystem spans 600+ applications, monitoring and incident management across 10,000+ servers, multi-cloud – multi-platform event streaming and microservices architecture, and enterprise-grade systems that power a catalog of over 1.4 million products, 330+ distribution centers and a fleet of 14,000 IoT-enabled delivery trucks, and more.

Everything we do at Sysco LABS supports Sysco’s Purpose of ‘Connecting the world to share food and care for one another’, and our technology directly impacts millions of food consumers in a trillion-dollar, global industry.

THE OPPORTUNITY

Sysco LABS is currently looking for a Senior Engineer/Engineer – Security Operations Center to function as a SOC Tier II Analyst working on the cybersecurity team of the world’s largest foodservice provider.

WHAT YOU WILL BE DOING

  • Correlating threat data from various sources to establish the threat/impact against the network
  • Assessing data and recommending appropriate countermeasures, facilitating tracking, preliminary handling of investigations, and reporting of all security events and computer incidents
  • Initiating remediation actions and applying lessons learned to security incident investigation and resolution
  • Performing monitoring, identification and resolution of security events to detect threats through analysis, investigations and prioritization of events based on risk/exposure
  • Developing processes which analyzes data, producing accurate, meaningful, easily interpreted results based on user requirements and use cases
  • Developing processes which align with enterprise incident response activities and coordinating closely with other teams within the Security Operations Center
  • Creating custom tool content to enhance capabilities of security operations teams
  • Managing the collection, documentation and research of security events generated by the SOC monitoring platform and infrastructure
  • Providing support to Security Incident Management aligned with NIST standards
  • Providing technical writing input for Standard Operating Procedures, Runbooks/Playbooks and Incident Response Plans
  • Supporting training and development with both analysts and tabletop exercises
  • Assisting/Leading tool configuration and content creation efforts

REQUIREMENTS

  • 2-4 years of experience on one of the following team(s): Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC)
  • A Bachelor’s Degree in Computer Science, Information Technology, or equivalent work experience
  • Experience supporting cybersecurity operations in a large enterprise environment
  • Experience with incident response, analysis of network traffic, log analysis, and the ability to prioritize and differentiate between potential intrusion attempts and false alarms, managing and tracking investigations to resolution
  • Experience with SIEM & Log Management solutions
  • Familiarity with one of the following: NIST Incident Response Lifecycle, Cyber Kill Chain, Adversarial Tactics, Techniques & Common Knowledge (ATT&CK) Metrics
  • CCNA Security, GCIA, GCIH, CYSA+, Security+ or other related security certifications; a minimum of one active security certification is a must
  • Experience with one or more of the following tools: Qradar SIEM/Cortex XSOAR, SentinelOne, Proofpoint Email, Azure Suite and or Zscaler
  • The ability and willingness to work from 6:30 am – 4:30 pm IST

WHAT AWAITS YOU AT SYSCO LABS

  • US dollar-linked compensation 
  • Performance-based annual bonus 
  • Performance rewards and recognition 
  • Agile Benefits - special allowances for Health, Wellness & Academic purposes 
  • Paid birthday leave
  • Team engagement allowance 
  • Comprehensive Health & Life Insurance Cover - extendable to parents and in-laws 
  • Overseas travel opportunities and exposure to client environments 
  • Hybrid work arrangement

Sysco LABS is an Equal Opportunity Employer.

Apply Now
Personal Information
* Required Fields
Qualifications
Work Experience
Prior Employers (if applicable)
Skills(Enter as many as applicable.)
Please upload PDF files less than 5MB only
Sign up for Sysco LABS Vacancy Alerts to be notified when similar opportunities arise
Sign up now
Back to vacancies
Life @ Sysco LABS
At Sysco LABS, we always go the extra mile but know when to have some fun too - we never pass up an opportunity to celebrate or let our hair down and understand the importance of play in helping us do our best work.
T: +94 (011) 2024500
55A, Srimath Anagarika Dharmapala Mawatha,
Colombo 00300
Sri Lanka
Business Continuity Management System Policy
Integrated Management System Policy
Facility Management System Policy
Privacy Policy
Terms and Conditions