Danone Specialized Nutrition is seeking for Cybersecurity Senior Incident Responder APAC, based in Malaysia. With our global presence, brands and business and our mission of bringing health through food to as many people as possible; we believe that people growth is a key asset to reach a sustainable business performance.
To succeed in this journey, we're looking for the right talent and personalities eager to bring their energy and ideas to a meaningful project. Take this opportunity to GROW together and experience a culture that empowers you to express your ideas and share what you're passionate about!

1. Incident Detection and Response:
• Monitor and analyze security alerts and logs to promptly identify and respond to potential security incidents.
• Lead the response and investigation of security breaches, coordinating with cross-functional teams to contain and mitigate threats.
• Apply your knowledge of incident response methodologies to minimize impact and conduct post-incident analysis.
2. Threat Analysis and Mitigation:
• Utilize your experience to analyze network traffic, logs, and other data sources to detect and investigate threats.
• Collaborate with internal teams to assess incidents and recommend appropriate remediation actions.
• Leverage advanced threat detection tools and techniques to proactively identify emerging risks.
3. Vulnerability Management:
• Apply your expertise in vulnerability assessment and penetration testing to identify exploitation detection ways.
4. Security Operations management:
• Ensure incidents are handled in a timely and qualitative manner, identify areas for continuous improvement
• Participate in the operation and continuous improvement of security information and event management (SIEM) systems.
• Manage the CERT analysts for the APAC zone, in coordination with the CERT manager.
• Provide mentorship and guidance to junior analysts, sharing your knowledge and fostering professional growth.
• Develop and refine standard operating procedures (SOPs) for incident response and other critical processes.
5. Threat Intelligence Integration:
• Stay abreast of emerging threats, vulnerabilities, and tactics through continuous research and engagement with cybersecurity communities.
• Incorporate threat intelligence into your daily analysis and response activities to enhance proactive threat detection.
6. Documentation and Reporting:
• Create comprehensive incident reports, analysis summaries, and documentation for management and regulatory purposes.
• Maintain meticulous records of incidents, investigations, and mitigation efforts.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent work experience).
• Minimum of 5 years of hands-on experience in a SOC, CERT, or similar cybersecurity role.
• Professional certifications such as Certified Ethical Hacker (CEH), and SANS FOR500 (or equivalent) are highly desirable.
• Strong proficiency in using EDR, SIEM and SOAR tools and other cybersecurity technologies.
• Demonstrated ability to analyze network traffic, logs, and security artefacts to detect and respond to threats. Windows forensics and scripting skills are a plus.
• Strong knowledge in most common IT protocols (network, system, email…)
• Proven expertise in incident response methodologies, including containment, eradication, and recovery.
• Excellent problem-solving skills, enabling informed decisions during high-pressure situations.
• Strong communication skills, both technical and non-technical, for effective collaboration and reporting.
• Leadership skills to mentor and guide junior analysts.
• Experience in OT cybersecurity would be a plus.