Senior SOC Analyst

Senior SOC Analyst

Location: Mexico City (Hybrid)

At Alcon, we are driven by the meaningful work we do to help people see brilliantly. We innovate boldly, champion progress, and act with speed as the global leader in eye care. Here, you’ll be recognized for your commitment and contributions and see your career like never before. Together, we go above and beyond to make an impact in the lives of our patients and customers. We foster an inclusive culture and are looking for diverse, talented people to join Alcon.

As a Senior SOC Analyst supporting the Alcon Security Operations team, you will provide high-quality services, performing daily duties of monitoring, detecting, analyzing, and performing incident response to cyber threats against Alcon applications, platforms, networks, and information.  The Senior SOC Engineer will be a technical SME working to drive forward SOC, SIEM, and Security IR capabilities, tooling, and processes as per the Duties described below. The environment includes local area networks/wide area networks (LAN/WAN), Internet connections, public-facing services & websites, wireless, mobile/cellular, cloud-based applications, and services (IaaS, PaaS, SaaS), security devices, servers, end-user workstations and laptops, production manufacturing, and various other 3rd party connections & services.

In this role, a typical day will include:

• Analyzing & reviewing escalated cases until closure. This includes investigations & recommending appropriate corrective actions for cyber security incidents.
• Leading efforts in monitoring, reporting, and responding to major information security incidents.
• Create & deploy Use Cases for SIEM. Periodically fine-tune the use cases as per business requirements.
• Must have proven hands-on experience in security technologies such as – SIEM, SOAR, EDR, and DLP.
• Scripting knowledge (Python, PowerShell, or Perl) would be an added advantage.
• Create ad hoc reports & dashboards from SIEM as per requirements.
• Troubleshooting logs sources and log parsing issues.
• Management, administration, upgrades & maintenance of Alcon security operations devices.
• Responsible for integration and onboarding of standard and non-standard log sources in SIEM.
• Understanding of various attack methods and mitigation techniques for on-premises and multi-cloud environments
• Root cause analysis preparation for major incidents.
• Drive the outcomes of lessons learned to improve the organization's security posture.
• Act as a point of escalation for L1 & L2 SOC personnel in support of Security Incident Response investigations.
• Assess, identify, and create policies to automate incident response.
• Coach and mentor junior analysts.
• Support Alcon DLP solution and help define policies.

WHAT YOU’LL BRING TO ALCON:

• Bachelor of Science from an accredited institution.
• The ability to fluently read, write, understand, and communicate in English.
• Strong knowledge of best practices in incident management, problem management, and change management.
• Superior communication skills and ability to brief senior government officials.
• 5+ years of Information Security / Cybersecurity experience.
• DESIRED SKILLS AND CERTIFICATIONS
• 7+ years total working in IT (experience can be various IT roles across infrastructure, network, security, application dev/ops).
• Experience in networking and telecommunications integration, design, and architecture.
• Strong OS knowledge of Windows and Linux, including networking and security.
• Hold preferably two but at minimum one relevant industry certification (GCIH, GCED, CISSP, CEH, GMON, etc.)
• Understanding of SIEM tools such as Splunk, FireEye Helix, ArcSight, Microsoft Sentinel, McAfee Nitro, etc.
• Experience with Active Directory, IAM, PAM
• Experience building and maintaining a high-performance team of analysts.
• Expertise with an industry-standard framework (ISO, NIST, PCI).
• Experience maintaining metrics and SLAs.

HOW YOU CAN THRIVE AT ALCON:

• Opportunity to join a growing, early-stage organization built within a mature, stable global company.
• Friendly working environment and a diverse and highly motivated team
• Individual career development plan and possible career growth within a newly created account
• Truly international environment and daily interactions with colleagues and stakeholders from all over the world
• Attractive benefits & compensation package
• Flexible hours and remote work possibilities (min 3 days per week office-based)

KINDLY SUBMIT YOUR RESUME IN ENGLISH

Alcon Careers

See your impact at alcon.com/careers

Alcon is an Equal Opportunity Employer and takes pride in maintaining a diverse environment and our policies are not to discriminate in recruitment, hiring, training, promotion or other employment practices for reasons of race, color, religion, gender, national origin, age, sexual orientation, gender identity, marital or veteran status, disability, or any other legally protected status.

ATTENTION: Current Alcon Employee/Contingent Worker

If you are currently an active employee/contingent worker at Alcon, please click the appropriate link below to apply on the Internal Career site.

Find Jobs for Employees

Find Jobs for Contingent Worker

Alcon is an Equal Opportunity Employer and takes pride in maintaining a diverse environment and our policies are not to discriminate in recruitment, hiring, training, promotion or other employment practices for reasons of race, color, religion, gender, national origin, age, sexual orientation, gender identity, marital or veteran status, disability, or any other legally protected status.