Senior Security Engineer Sec Ops Location: Pasir Gudang, MY, 81700 At Barry Callebaut, we are on a journey to transform the cocoa and chocolate industry. As the world’s leading manufacturer of high-quality chocolate and cocoa products, our actions truly shape the future of our industry. We are a business-to-business company, serving the entire food sector, from the cocoa bean to the finest chocolate product. We are a company with a purpose, we believe in doing well by doing good and reinvesting in the communities we operate. We have a long-standing commitment to sustainability and our goal is to shape a sustainable cocoa and chocolate future. We are headquartered in Zurich, and have more than 12,000 passionate Employees working in more than 40 countries worldwide. We are very proud of who we are and what we do. And of course, we are always looking for talented people to help us have a positive impact on our industry and beyond! About the role + As aSenior Security Engineer SecOps,you’ll report directly to the Director of Security Operations. Your responsibilities will include coordinating incident response, improving security configurations and integrations of the SOC toolset, managing vulnerabilities, analyzing threat intelligence, performing threat hunting, developing security monitoring use- cases and IR procedures, conducting resilience exercises in collaboration with cybersecurity partners and other teams. Working closely with professionals across Digital and Security teams, you’ll leverage cutting-edge tools to enhance our Barry Callebaut’s cyber resilience. If you thrive in a dynamic environment and are passionate about cybersecurity, seize this opportunity to make a tangible impact! Key responsibilities include + Proactively analyze security alerts and identify vulnerabilities across the entire IT/OT and cloud landscape, working closely with the 24/7 SOC to implement effective mitigation strategies. + Collaborate with cross-functional teams to enforce security controls and ensure adherence to best practices. + Develop security monitoring use-cases and automations. + Perform threat hunting and threat intelligence analysis. + Develop and improve IR security procedures. + Conduct in-depth root cause analyses, extract key learnings, and drive remediation efforts to prevent recurrence. + Optimize and maintain security tools including vulnerability management, posture management, SIEM, and XDR/EDR solutions. + Actively participate in security awareness initiatives to foster a culture of security within the organization. + Spearhead regular threat and vulnerability assessments, as well as red and purple team exercises to enhance security posture. + Provide essential operational support, including incident response planning and execution, post-incident analysis, and business continuity management. + Identify process and system improvement opportunities, gathering requirements to enhance IT security practices. + Support the implementation of robust security policies and systems to safeguard the IT environment. About you + Degree in IT/technology, data, business administration, or infrastructure security in a comparable field. + CISSP, CISM, GIAC , CompTIA Security+, or other relevant security-related certifications are appreciated, but not required. + Proficient in English. + Advanced knowledge of infrastructure security layered security approaches including network security measures, endpoint security, and cloud security with a minimum of 5 years of relevant working experience. + Experience in security operations, analyzing security threats / security alerts and responding to security incidents. + Knowledge of threat hunting and experience in analyzing threat intelligence data sources. + Experience in performing security incident analysis and improving the configurations for the following types of technologies: + SIEM (eg. Microsoft Sentinel knowledge is a plus), + XDR (eg. Microsoft Defender for Endpoint knowledge is a plus), + SOAR, + Vulnerability Management. + Experience in implementing SOC security solutions and configuration enhancement (SIEM/EDR/Vulnerability Management/SOAR etc.) is a plus. + Good knowledge of vulnerability testing, incident management, or business continuity management is a plus . + Scripting or programming experience (Python, PowerShell) is beneficial. + Knowledge of security orchestration, automation and response (SOAR) to optimize the day-to-day activities. + Independent and self-driven personality, taking responsibility and owning tasks. + The ability to bring people together and mobilize individuals to pursue a joint agenda. + Strong analytical and problem-solving skills. + Ability to interpret business requirements and draw insights. + Excellent written and verbal communication skills, ability to present to diverse audiences. + Willingness to learn and try new technologies and topics. At Barry Callebaut, we are committed to Diversity & Inclusion. United by our strong values, we thrive on the diversity of who we are, where we come from, what we’ve experienced and how we think. We are committed to nurturing an inclusive environment where people can truly be themselves, grow to their full potential and feel they belong. #oneBC - Diverse People, Sustainable Growth. If you want to learn more about Barry Callebaut, please find further information here. Were you missing anything in this job ad? Please share your feedback with us by clickinghere (https://app.talenthub.io/feedback/ad81b0fb66d2416990060452e7511e45?default\_lang=en) .