Security Analyst

Keurig Dr Pepper is seeking a Security Analyst who is responsible for supporting the organization’s security of proprietary and sensitive information, through coalescing security-related information from a variety of security tools. This individual will support the implementation of a comprehensive information security program and is actively involved in security policies, processes, and standards. The security analyst works with the IT department to select and deploy technical controls to meet specific security requirements and defines processes and standards to ensure that security configurations are maintained.  The Security Analyst collaborates on critical IT projects to ensure that security issues are addressed throughout the product life cycle.

What you will do:

As the Security Analyst, you will…

• Perform system and network assessments to identify deviations from acceptable configurations, enclave policy, or local policy.
• Utilize information to investigate and analyze security events and alerts for the purpose of mitigating/hunting threats.
• Investigate, analyze, and develop security integrations while managing operations and maintaining system security.
• Plan and execute security measures to protect the organization’s networks and systems.
• Respond to incidents in the physical and technological environment.
• Perform vulnerability testing and risk assessments.
• Draft roles and access privileges of network users and access circumstances.
• Communicate improvements to the organization’s cyber security posture.
• Draft recommendations regarding informed risk management decisions.
  
  

Who you are:

• Basic knowledge of the development and implementation of security strategies, policies, and procedures.
• Basic knowledge of firewalls and encryption to identify potential weaknesses and implement measures.
• Basic knowledge of security controls, conceptual models, and frameworks to monitor security posture and enhance security features.
• Demonstrated skills in applying the security control frameworks and supporting the implementation, monitoring, and effectiveness of those controls.
• Demonstrated skills in threat and vulnerability management, taking action to mitigate threats and remediate vulnerabilities.
• Demonstrated skills in security monitoring, conducting information security posture assessments, vulnerability scanning, and penetration testing.
• Ability to educate various personnel regarding information security compliance, policies, and standards.
• Ability to monitor and report status on security matters to develop security risk analysis scenarios and response procedures.
• Research and stay updated on the latest security trends, threats, and best practices 
• Engaging in opportunities to understand how to assess security needs and perform physical security investigations and audits.
• Assess existing workflows to identify automation opportunities

• Benefits, subject to election and eligibility: Medical, Dental, Vision, Disability, Paid Time Off (including paid parental leave, vacation, and sick time), 401k with company match, Tuition Reimbursement, and Mileage Reimbursement
• Annual bonus based on performance and eligibility

• Bachelor’s degree in related field (e.g., Computer Science, Computer Engineering Information Technology, System Analysis, etc.) or equivalent combination of education and work experience.
• Typically, 3+ years of experience in IT/network security/cybersecurity.
• Knowledge of security principles, frameworks, and standards, such as NIST, ISO, and CIS 
• Proven experience in information risk concepts and principles, as a means of relating business needs to security controls.
• Experience in DevOps and Agile technology environments. (preferred)

• Familiarity with common security tools (TIP, SIEM, EDR, XDR, SOAR, etc.)
• Background security engineering with experience in scripting, development, and automation (preferred)

• Experience in working in multiple, diverse technologies and processing environments.
• Native-level proficiency/fluent in English.

Licenses and Certifications Required:

• Information Security Certifications, e.g., CompTIA Security+, Certified Information Systems Security Professional (CSSP), etc. (preferred)

Keurig Dr Pepper (NASDAQ: KDP) is a leading beverage company in North America, with a portfolio of more than 125 owned, licensed and partners brands and powerful distribution capabilities to provide a beverage for every need, anytime, anywhere. We operate with a differentiated business model and world-class brand portfolio, powered by a talented and engaged team that is anchored in our values. We work with big, exciting beverage brands and the #1 single-serve coffee brewing system in North America at KDP, and we have fun doing it!

Together, we have built a leading beverage company in North America offering hot and cold beverages together at scale. Whatever your area of expertise, at KDP you can be a part of a team that’s proud of its brands, partnerships, innovation, and growth. Will you join us?

We strive to be an employer of choice, providing a culture and opportunities that empower our team of ~29,000 employees to grow and develop. We offer robust benefits to support your health and wellness as well as your personal and financial well-being. We also provide employee programs designed to enhance your professional growth and development, while ensuring you feel valued, inspired and appreciated at work.

Keurig Dr Pepper is an equal opportunity employer and recruits qualified applicants and advances in employment its employees without regard to race, color, religion, gender, sexual orientation, gender identity, gender expression, age, disability or association with a person with a disability, medical condition, genetic information, ethnic or national origin, marital status, veteran status, or any other status protected by law.