The Cyber Security Analyst is tasked with identifying and alerting on real-time information security events that could pose risks to Sysco’s employees, customers, suppliers, shareholders, partners, or business operations.

Key Responsibilities:

• Configure and maintain monitoring, correlation, and alerting systems to ensure that only relevant security issues are detected and reported.
• Correlate events across multiple systems and network areas to identify potential security incidents, initiating the incident response process to contain and address the situation appropriately.
• Set up security tools to ensure all relevant events are reported through the SIEM system.
• Manage and configure the SIEM system to detect and alert on potential security events while minimizing false positives.
• Assist in investigations conducted by the Information Security team.
• Help maintain a DLP solution to notify appropriate parties of violations and minimize false positives.
• Configure host and network-based intrusion detection and prevention systems to help identify potential security incidents.
• Create and maintain security monitoring dashboards for the Information Security team and management to provide real-time and long-term visibility into security events.
• Deploy security agents to systems and devices to ensure effective monitoring and reporting of security events within the environment.
• Participate in the review and selection of Information Security tools.
• Engage with key service providers when security issues are identified, ensuring they are aware of the impact and are working towards resolution in alignment with Sysco’s incident response requirements.
• Compile monthly issue and trend reports for distribution to Enterprise Security & Support management.
• Suggest changes to reduce vulnerabilities and mitigate the risk of exploitation that could result in potential incidents.
• Assist in the documentation and maintenance of team processes and documentation.
• Contribute to the design and implementation of ticketing system enhancements to streamline monitoring, alerting, and incident management.
• Propose and implement process improvements based on lessons learned.
• Develop custom scripts to facilitate logging and alerting requirements.
• Perform additional tasks as required by the Enterprise Security & Support team.
• Serve as an escalation point for potential security-related incidents.

Qualifications:

• 7 years of experience in Information Security.
• Experience managing SIEM systems.
• Strong understanding of system and network attack methods and how to detect them.
• Advanced analytical skills.
• Ability to remain calm and diplomatic in high-stress situations.
• Capable of managing multiple simultaneous activities, including those that require cross-team collaboration.
• Able to work independently with minimal supervision.
• Effective at escalating issues when necessary and influencing decisions and actions without direct authority.
• Quick learner with the ability to adapt to new technologies and processes.
• Flexible and able to adjust to changes in timelines and priorities.
• Willingness to work off-hours when needed.
• Experience documenting work as evidence of control success or deficiency.
• Strong verbal and written communication skills.
• Preferred certifications: CISSP, CEH, GIAC.

Work Schedule:

• Sunday to Wednesday from 09:00 am to 07:00 pm (adjusted for Daylight Saving Time).
• Wednesday to Saturday from 09:00 am to 07:00 pm (adjusted for Daylight Saving Time).

Benefits:

• Hybrid work model (2 days in the office at Ultra Park II, Lagunilla, Heredia).
• Private Medical Insurance.
• Association benefits (Asociación Solidarista).
• Life Insurance.
• Personal Day Off.