Cybersecurity Specialist (Incident Response) - IKEA
Date posted: 24/10/2024
We are on a journey to transform our digital capabilities, bringing core business processes, people, data & technology together - an enabler for IKEA to become an even better home furnishing retailer in the future. A journey that needs passionate people who embrace change, dare to question and want to make a difference.If that sounds like you, come and join us. Together we can do great things!
About the area
IKEA Operations Management builds up, delivers, serves and supports shared data and technology for the IKEA value chain. Together we build a digital foundation to enable our core business partners and franchisees to work more efficiently and create a rewarding customer experience in an omnichannel world.
Inter IKEA is on a journey to strengthen our ability to protect the IKEA brand from cyber risks and threats by developing, enhancing and implementing a set of cybersecurity capabilities.
About the job
We are seeking a skilled, hands-on and passionate Cyber Security and Incident Response Specialist to complete our growing Global Security Operations & Incident Response team at Inter IKEA. Reporting to the Security Operations and Incident Response Manager, you will work with a team of cyber experts to enhance our security operations capabilities and drive initiatives to identify and manage cyber risks facing the IKEA value chain.This is a specialist role that will enable you to deliver brilliant outcomes through your expertise, motivation to learn and collaboration with the team, while being hands-on in working with the latest and greatest cyber solutions.
In this role, you and your team will be contributing to several key capability areas, including Threat Management, Incident Management, Cyber Threat Intelligence, and Cyber Engineering.Your Responsibilities will be split between operationally supporting Sec Ops team with daily Threat Management and Incident Response processes, and more strategic cyber engineering activities that aim to develop new capabilities, enhance tool interoperability, develop detection use cases and continually enhance the overall SOC workflow.
You will have the opportunity to work with a network of expertise across Inter IKEA, developing a comprehensive approach to security operations and building trusting relationships with stakeholders at all levels.
About you
Are you a Cyber Security specialist, passionate about Incident Response and someone who loves to solve puzzles and protect the things that matter most? Do you have a knack for spotting trends and finding creative solutions to complex problems?If so, then come join our cozy little cybersecurity team at IKEA! We're a group of bright, energetic individuals who are dedicated to making healthy and sustainable living more accessible and affordable for everyone. Perhaps this is your first time in Cyber Specialist role, well we can help you with that!
We are looking for a technical cybersecurity specialist with experience in Security Operations and Security Engineering covering the following operational and engineering areas:
Operational contributions:
- Operation of monitoring and incident response tooling and processes
- Incident triage, investigation, and response coordination
- Operating of SIEM and security tooling within Cloud, endpoint and network areas
Cyber Engineering contributions:
- Development of detection use cases, across a wide range of security platforms
- Security orchestration automation and response (SOAR) capability development; and general workflow enhancements
- Active contribution to Cyber Engineering efforts to enhance tool interoperability and SOC effectiveness and efficiency
To be successful in this role, you should have:
- At least 5 years demonstrable experience in both Security Operations (Detect and Respond) and connected cyber engineering areas
- Ability to respond to changes and manage uncertainty in a fast-changing organizational environment
- Knowledge of cyber security frameworks and best-practices like NIST CSF, MITRE ATTACK, OWASP Top 10
- Hands-on experience with security operations tools like Splunk (or other SIEM technologies), MDE, MDO, Service Now Sec Ops (or other SOAR tooling)
- Scripting or development experience
With your excellent communication skills, you have the capability to build strong relations with both internal as external stakeholders.
More Information
This role is full-time (40 hours per week) and will be based in Malmö, Sweden or Delft, the Netherlands. Interested? Submit your CV, in English, by 7-Nov-24. Please don't hesitate to apply or connect if you have any questions, as we are urgently looking, therefore we will interview continuously during advertising.If you have any questions about the role, please contact Recruiter Sarah Arshad (sarah.arshad@inter.ikea.com).