Diageo Computer Security Incident Response Lead in Bogota, Colombia




Reporting Location:






Type of Job:


External Job Description:


The Diageo CSIRT team lead is responsible for proactively investigating and resolving security incidents related to Diageo and Diageo’s partner organizations, to minimize the impact of incidents in progress, and reduce the likelihood and impact of similar future incidents.

Purpose of role:

  • Lead security incident investigations and coordinate supporting resources across Diageo Information Security, Compliance, Legal and HR functions to support security incidents.

  • Provide leadership, governance and oversight over the CSIRT function to ensure compliance to Diageo incident response standards and processes

  • Lead other global security analysts who support the CSIRT team as part of their job function

  • Develop and implement service improvement plans to enhance CSIRT functional capabilities

Top 3-5 Accountabilities:

  • Investigate, manage and document, security incidents driven from the business, Diageo support partners, security alerts and known vulnerabilities. Develop and support mitigation plans and implement controls to address known risks and vulnerabilities.

  • Define, maintain, and update security incident response standards and processes and support internal and external audit functions related to security incident response controls and process

  • Security alert investigation and event correlation skills using security forensic tools such as, Arcsight, log management, IDP/IPS and threat and vulnerability systems

  • Use technical knowledge and troubleshooting skills to support identification of threats and propose mitigations to address risk identified through incident investigation, which will occasionally include acting as an escalation contact outside core working hours

  • Support Security project delivery acting as subject matter expert

Qualifications and responsibilities:

  • Bachelor’s degree in information technology or information security preferred

  • Education Preferred:

  • Appropriate security certifications such as CISSP

  • Security forensics training

  • ITIL certification

  • Previous role as a CSIRT lead

  • Experience with SIEM technolog

  • Shall have a minimum of five continuous years of work experience working in security incident response and/or threat and vulnerability management

  • Strong IT technical knowledge of IT infrastructure, network and security solutions, such as Firewalls, IDP/IPS, T&V

  • Ability to work independently in fast paced environment, while managing stakeholders and changing priorities

  • Strong analytical, critical thinking and troubleshooting skills

  • Strong organizational skills and ability to multitask while working in a fast paced environment

  • Strong understating of information security, PII controls and compliance

External Job Title:

Computer Security Incident Response Lead



Image List: