• Investigate and respond to alerts from vulnerability scanning, endpoint security, endpoint detection and response (EDR), and intrusion detection and response (IDR) tools • Monitor and manage identity security, MFA, and Conditional Access within Azure/Entra ID • Document security investigations, findings, and remediation actions • Collaborate with IT and cross-functional teams to resolve security issues and improve security controls

Title: Cyber Threat Intelligence Analyst Location: United States Job Description: Veeva Systems is a mission-driven organization and pioneer in industry cloud, helping life sciences companies bring therapies to patients faster. As one of the fastest-growing SaaS companies in history, we surpassed $3B in revenue in our last fiscal year with extensive growth potential ahead. At the heart of Veeva are our values: Do the Right Thing, Customer Success, Employee Success, and Speed. We're not just any public company – we made history in 2021 by becoming a public benefit corporation (PBC), legally bound to balancing the interests of customers, employees, society, and investors. As a Work Anywhere company, we support your flexibility to work from home or in the office, so you can thrive in your ideal environment. Join us in transforming the life sciences industry, committed to making a positive impact on its customers, employees, and communities. The Role This position is responsible for discovering, analyzing, and vetting relevant cyber threat information to produce detection and defensive mechanisms for the SOC. Additionally, the CTI Analyst will author reports to Senior Leadership and other stakeholders to maintain excellent company situational awareness of emerging threats relevant to Veeva. The analyst will also evaluate internal behavioral telemetry and potential risk indicators to identify and mitigate insider threats, ensuring a comprehensive view of the organization's risk profile. A repository of IOCs will be maintained to correlate attack patterns to further predict and defend against adversary personas. Finally, the CTI analyst will aid in the preparation and execution of proactive defense measures. What You'll Do - Leverage a Collection Management Framework (CMF) that organizes all threat intelligence feeds, both internal and external, by indicators and data that can be ascertained as well as the methods in how data is collected - Report on potential areas of compromise and areas of concern through information provided by threat intelligence sources - Apply the indicator lifecycle (revealed, matured, utilized) to validate incoming indicators and determine relevance to Veeva - Detect patterns of ongoing intrusion and intrusion attempts across Veeva and the industry to predict future IOCs and suggest implementations - Utilize CTI tools to detect/report on trends to drive decisions influencing defensive operations - Report actionable metrics related to adversarial behavior to drive prioritized defensive actions - Support incident responders with relevant IOCs and historical data during ongoing investigations - Author intelligence reports that address intelligence requirements and RFIs from across the company - Support engineers in the preparation, design, and execution of threat hunt missions - Research and analyze adversarial threat behaviors to prepare for emulation exercises to assess controls - Apply threat intelligence methodologies to internal log data and User and Entity Behavior Analytics (UEBA) to detect anomalies indicative of insider compromise or collusion Requirements - Good understanding of the Kill Chain and Diamond models, and means to merge them - Ability to leverage MITRE ATT&CK in support of CTI reporting - Good familiarity with some OSINT and proprietary CTI tools, examples as: DomainTools, MISP, YARA, ISAC/ISAO feeds, CyberChef, DataSploit, FireHOL, Maltego, Shodan, ThreatQuotient, Recorded Future Anomali, etc. - Good familiarity with modern threats, top delivery vectors, and methods of exploitation - Experience in organizing, processing, analyzing, and vetting indicators using sorting/processing tools to maintain a current, relevant threat database - Experience in leveraging existing threat intelligence to augment investigations during incident response - 1+ years of experience in a cyber threat intelligence-related field, or 3+ years of experience in a cybersecurity operations field - Experience analyzing behavioral telemetry and system logs (e.g., SIEM, EDR, UEBA) to identify technical indicators of insider risk - Strong familiarity with different levels of CTI products (Strategic, Operational, Tactical/Technical) - Good understanding of the different phases of the CTI lifecycle (Planning, Collection, Analysis, Production, and dissemination/feedback) Nice to Have - Threat Intelligence or Intrusion Detection-related certification, such as GCTI, GOSI, CTIA, GCDA, GCIA, CCTIA, CTIP, CPTIA, CRTIA, etc. - Experience in enriching data of the four atomic indicators (domains, strings, IP addresses, accounts) to deliver additional context to incident responders - Solid background in cloud security principles - Experience in creating and maintaining a prioritized list of critical assets and understanding the top threats against them - Experience with threat hunting development - Experience in threat emulation or use of deceptive technologies Perks & Benefits - Medical, dental, vision, and basic life insurance - Flexible PTO and company paid holidays - Retirement programs - 1% charitable giving program Compensation - Base pay: $75,000 - $125,000 - The salary range listed here has been provided to comply with local regulations and represents a potential base salary range for this role. Please note that actual salaries may vary within the range above or below, depending on experience and location. We look at compensation for each individual and base our offer on your unique qualifications, experience, and expected contributions. This position may also be eligible for other types of compensation in addition to base salary, such as variable bonus and/or stock bonus. #LI-RemoteUS #LI-Associate Veeva’s headquarters is located in the San Francisco Bay Area with offices in more than 15 countries around the world. Veeva is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity or expression, religion, national origin or ancestry, age, disability, marital status, pregnancy, protected veteran status, protected genetic information, political affiliation, or any other characteristics protected by local laws, regulations, or ordinances

• Experiência sólida em Resposta a Incidentes, SOC/CSIRT ou funções correlatas, com atuação em incidentes de média/alta criticidade. • Domínio do ciclo de IR (preparação, detecção/análise, contenção, erradicação, recuperação e pós-incidente), com foco em execução consistente e auditável. • Vivência com SIEM e EDR/XDR, análise de logs/eventos, investigação de alertas e correlação de evidências. • Conhecimento aprofundado de Windows, Linux e macOS, incluindo análise de artefatos relevantes para IR. • Sólidos fundamentos de redes e protocolos, arquitetura de segurança e análise de comunicações suspeitas. • Conhecimento e aplicação de frameworks/padrões (ex.: MITRE ATT&CK, NIST SP 800-61, SANS IR). • Experiência em investigações em ambientes cloud (ex.: IAM, trilhas de auditoria, logs nativos, postura e respostas). • Automação e scripting (Python/PowerShell/Bash) para acelerar coleta, triagem e análise. • Experiência com integração e uso de threat intelligence (feeds, IOCs, enriquecimento e priorização).

Job Description Are You Ready to Make It Happen at Mondelēz International? Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours. As an individual contributor, the successful candidate will be proficient at managing risk assessments of both third parties and internal technologies. In addition, the candidate will be performing compliance activities related to technology assurance areas around access management, vulnerability management and configuration management. Candidate will also demonstrate ability and experience in governance related activities including administrative management of risk and control registers as well as policies and standards. How you will contribute Risk Management Responsibilities - Execute risk assessment testing supporting the Risk Manager. - Document risk assessment results. - Support Risk Manager in drafting risk assessment reports. - Perform administrative management of risk register (additions/editions/deletions, etc). - Document risk acceptance/exemptions that have been approved per the program. - Manage quarterly/annual review of risk acceptance/exceptions. - Manage risk assessment results in relevant dashboards. - Document Issues and Remediation activities for all exceptions noted during risk assessments. Compliance Responsibilities - Perform quarterly compliance assurance testing. - Document compliance testing results. - Maintain Management Action Plan (MAP) catalog with due dates. - Manage monthly audit MAPs. Includes the timely communication of open MAPs an escalation as needed of risks to completing MAPs at their agreed delivery dates. - Perform administrative activities in GRC Solution for compliance related activities. - Provide administrative support for ad-hoc external audits. - Provide administrative support for internal audits. - Support compliance program reporting activities. Requirements - 3 years in Information Security field, with at least 2 years working in GRC. - Experience with GRC tools (e.g., Archer). - Knowledge of security concepts and methodologies such as risk assessments, risk & controls, policies & standards, enterprise security strategies, network, and cloud security. - Knowledge of security frameworks such as CIS and NIST. - Excellent written and verbal communications skills, including presentational skills and able to clearly communicate issues to management and other key stakeholders. No Relocation support available Business Unit Summary At Mondelēz International, our purpose is to empower people to snack right by offering the right snack, for the right moment, made the right way. That means delivering a broad range of delicious, high-quality snacks that nourish life's moments, made with sustainable ingredients and packaging that consumers can feel good about. We have a rich portfolio of strong brands globally and locally including many household names such as Oreo, belVita and LU biscuits; Cadbury Dairy Milk, Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum. We are proud to hold the top position globally in biscuits, chocolate and candy and the second top position in gum. Our 80,000 makers and bakers are located in more than 80 countries and we sell our products in over 150 countries around the world. Our people are energized for growth and critical to us living our purpose and values. We are a diverse community that can make things happen-and happen fast. Mondelēz International is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation or preference, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. Job Type Regular Information Security Technology & Digital