Job Description
Company: Smurfit Westrock
Location: US
Smurfit Westrock (NYSE:SW) is the go-to leader and partner of choice in sustainable packaging. We are dedicated to creating efficient and scalable paper and packaging solutions to help solve complex packaging challenges. Guided by our values of safety, loyalty, integrity and respect, we are committed to delivering meaningful value for shareholders, customers, employees and the communities where we operate. Our technology organization is transforming how we work at Smurfit Westrock. We align with our businesses to deliver innovative solutions that: Address specific business challenges, integrate processes, and create great experiences Connect our work to shared goals that propel Smurfit Westrock forward in the Digital Age Imagine how technology can advance the way we work by using disruptive technology We are looking for forward thinking technologists that can accelerate our focus areas such as building stronger foundational technology capabilities, reducing complexity, employing digital transformation concepts, and leveraging disruptive technology. The opportunity: Senior Incident Responder How you will impact Smurfit Westrock: Lead cradle-to-grave incident response actions for declared incidents impacting the OT and IT environments ensuring a structured orchestration following the cyber technical incident response plan Collaborate with system and application owners in to coordinate containment and eradication activities in the OT and IT environments Perform malware analysis and deep-dive forensic examinations on endpoints, servers, network traffic and cloud environments to determine scope, impact, and threat actor actions Conduct post-incident analysis to confirm root cause, identify security gaps, and provide remediation recommendations Serve as a Tier III escalation point supporting 27/7 Global SOC operations to provide expert guidance and assistance with complex analysis and incident handling Collaborate with threat hunting and detection engineering teams to create and enhance detections based on observations and lessons learned from incidents Develop and maintain incident response playbooks, runbooks, and response workflows What you need to succeed: Minimum of six (6) years of experience working directly in a Security Operations Center (SOC), or on a Computer Incident Response Team (CISRT) performing incident response supporting OT environments Bachelor’s Degree in Computer Science or a related field of study, or eight years of cybersecurity professional experience in lieu of a degree Preferred Certifications: GIAC Certified Incident Handler – GCIH GIAC Certified Forensic Analyst – GCFA GIAC Certified Forensic Examiner- GCFE Certified Information Systems Security Professional – CISSP Proficient with security solutions and platforms (SIEM, EDR, NDR, SOAR, UEBA, IDS/IPS, SEG, TIP) Experience conducting Incident Response, Security Monitoring, Structured Threat Hunting, and Cyber Threat Intelligence in a complex global environment Experience performing Open-Source Intelligence (OSINT) research Cloud security experience (Azure, AWS) Proficient in Python or other programming languages for malware analysis, and scripting Must be an independent self-starter, possess excellent written communication and can demonstrate the ability to present complex, technical information to both technical and non-technical audiences What we offer: Corporate culture based on loyalty, integrity, & respect. Comprehensive training with numerous learning and development opportunities An attractive salary reflecting skills, competencies, and potential. A career with a global packaging company where Sustainability, Safety and Inclusion are business drivers and foundational elements of the daily work. Candidates are required to undergo a drug screening after receiving a conditional job offer, but before starting employment. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by state or federal law.
Required qualifications:
• Minimum of six (6) years of experience working directly in a Security Operations Center (SOC), or on a Computer Incident Response Team (CISRT) performing incident response supporting OT environments
• Bachelor’s Degree in Computer Science or a related field of study, or eight years of cybersecurity professional experience in lieu of a degree
Source: Sorce