Back to vacancies
Mid - Senior
Cybersecurity

THE BIG PICTURE

Sysco LABS is the captive innovation center for Sysco Corporation (NYSE:SYY), a Fortune 100 company and the world’s largest foodservice provider with 71,000+ associates, 330+ distribution centers and over 725,000 customers in 90 countries. For fiscal 2023 that ended July 1, 2023, Sysco generated over $76 billion in sales.

Sysco LABS powers Sysco’s farm-to-fork operations and our technology is present in the sourcing of food products, merchandising, storage and warehouse operations, order placement and pricing algorithms, the delivery of food and supplies to Sysco’s global network, the in-restaurant dining experience of the end-customer and much more.

Our technology ecosystem spans 600+ applications, monitoring and incident management across 10,000+ servers, multi-cloud – multi-platform event streaming and microservices architecture, and enterprise-grade systems that power a catalog of over 1.4 million products, 330+ distribution centers and a fleet of 14,000 IoT-enabled delivery trucks, and more.

Everything we do at Sysco LABS supports Sysco’s Purpose of ‘Connecting the world to share food and care for one another’, and our technology directly impacts millions of food consumers in a trillion-dollar, global industry.

THE OPPORTUNITY

The Team Lead – Security Operations Center, is an entry-level leadership position and requires technical expertise and experience in 24/7 SOC operations. The right candidate will lead a team of motivated and eager cybersecurity analysts, who provide enterprise-wide event identification, triage, and remediation – escalating to other teams as necessary. The Team Lead – SOC, will help develop SOC processes, procedures, and workflows, hence, must have a clear understanding of SOC operations and should be ready to help develop automation, efficiencies and implement best practices based on their knowledge and experience.

WHAT YOU WILL BE DOING

  • Ensuring incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring
  • Working collaboratively with other cybersecurity teams and business units
  • Driving the implementation of emerging threat intelligence (IOCs, updated rules, etc.) to identify affected systems and the scope of the attack
  • Implementing standards and procedures to ensure alerts are addressed with relevancy, accuracy and in a timely manner
  • Defining protocols and maturing of 'playbooks' for operational response to cyber threats
  • Operating autonomously to further investigate and escalate in accordance with policies, procedures, and defined processes
  • Providing teaching/mentoring to SOC Level II and III Analysts
  • Leading SOC analysts during incident response actions, advising and coordinating with leadership during active incidents
  • Identifying, evaluating, developing, and reporting SOC-related metrics via dashboards and/or reports
  • Managing shift schedules and leading SOC personnel
  • Developing, leading and presenting relevant cybersecurity tabletop exercises to SOC staff and relevant stakeholder groups for the purposes of identifying process improvement opportunities

REQUIREMENTS

  • 5+ years of experience working within Security Operations Center AND using SIEM technologies
  • 7+ years’ experience in the General Cybersecurity field
  • 2+ years of experience leading and developing others is preferred
  • An associate degree in Information Technology, Cyber Security or Computer Science; including one or more of the following certifications: CISSP, CASP, CCSP, SSCP, SANS GIAC GMON, GCIH, GCIA, GCFA, GCFE and/or GREM
  • A deep technical understanding of core current cybersecurity technologies as well as emerging capabilities; Hands-on cybersecurity experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization including prior experience performing large-scale incident response
  • Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques, and procedures (TTPs)
  • Familiarity or experience in Intelligence-Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework
  • Familiarity with Cloud concepts and experience performing monitoring and responding to threats in Cloud environments
  • Demonstrated ability to identify automation/orchestration opportunities and developing plans to implement automation
  • Strong leadership, problem solving and critical thinking skills, with the ability to prioritize and execute autonomously
  • The ability to communicate effectively with all levels of staff, management, and business units both verbally and in writing
  • A strong understanding of latest security principles and protocols; Strong grasp of security operations technologies including SIEM, endpoint tools and network-based logs
  • Knowledge in emerging technologies and tactics used within a SOC, and how they are applied to improve efficiency and effectiveness
  • An understanding of tactics, techniques and procedures associated with cyber threats and the ability to develop relevant alerting, countermeasures, and threat hunting techniques
  • The ability to write scripts in Powershell or Python
  • The ability and willingness to work from 6.30 am to 4.30 pm IST

WHAT AWAITS YOU AT SYSCO LABS

  • US dollar-linked compensation 
  • Performance-based annual bonus 
  • Performance rewards and recognition 
  • Agile Benefits - special allowances for Health, Wellness & Academic purposes 
  • Paid birthday leave
  • Team engagement allowance 
  • Comprehensive Health & Life Insurance Cover - extendable to parents and in-laws 
  • Overseas travel opportunities and exposure to client environments 
  • Hybrid work arrangement

Sysco LABS is an Equal Opportunity Employer.

Apply Now
Personal Information
* Required Fields
Qualifications
Work Experience
Prior Employers (if applicable)
Skills(Enter as many as applicable.)
Please upload PDF files less than 5MB only
Sign up for Sysco LABS Vacancy Alerts to be notified when similar opportunities arise
Sign up now
Back to vacancies
Life @ Sysco LABS
At Sysco LABS, we always go the extra mile but know when to have some fun too - we never pass up an opportunity to celebrate or let our hair down and understand the importance of play in helping us do our best work.
T: +94 (011) 2024500
55A, Srimath Anagarika Dharmapala Mawatha,
Colombo 00300
Sri Lanka
Business Continuity Management System Policy
Integrated Management System Policy
Facility Management System Policy
Privacy Policy
Terms and Conditions