Senior Technical Analyst - Cyber Security

Further your career at Ball, a world leader in manufacturing sustainable aluminium packaging. Achieve extraordinary things when you join our team, and make a difference in your professional development, the community, and around the globe!

Please, submit your resume in English. 

Ball Corporation is looking for a well-rounded team player with broad technical leadership skills to add to our Global IT Security operations department. This position will be requires extensive knowledge in three or more of the following IT Security tools: Firewalls and firewall management systems, Web Content Filtering (URL Filtering), Web Application and Malware Protection, Intrusion Prevention System (IPS), SSL Decryption, Email Security, Strong Authentication, Remote Access, End Point Protection, Advanced Threat Management (APT), Vulnerability Scanning & Remediation, Identity Management, Data Loss Prevention, Data Encryption Global DNS, Security Incident Management (SIM), Public Key Infrastructure, Web Application Firewall / Proxy, IT Security Forensics, Password Vaulting, Risk assessment, security vulnerability assessment.

This position works within the Global IT Security team to solve complex IT Security problems by taking a broad perspective to identify innovative technical solutions. The successful candidate will provide mentorship and guidance to junior level cyber security analysts. The position also participates in managing our vendors to achieve the desired results including quality and on-time delivery. Working knowledge and relevant certifications in the above security tools is preferred.

Essential Responsible Areas

• Security administration is a hands-on role that requires a high level of technical expertise including networking, operating systems, applications, cloud environments and security.
• Responsible for a broad range of security tasks, including the day-to-day security administration of network security devices, as well as the management of technologies, such as firewall, intrusion detection, intrusion prevention, data loss prevention, antivirus, anti-spam, antispyware, and security information and event management (SIEM) tools.
• Monitor, analyze, and respond to security incidents and breaches swiftly and effectively, minimizing potential impact.
• Lead incident response efforts, coordinate investigations, and ensure all incidents are properly documented and reported.
• Serve as a subject matter expert on cybersecurity matters, both internally and externally
• Conduct regular security audits and assessments to identify weaknesses in networks, systems, and applications, and recommend remediation actions
• Create and maintain system and network diagrams as well as process documentation
• Opportunity to solve complex installation and integration challenges while documenting both solutions, analysis, and alternatives
• Provide support to ensure planning and deployment is accomplished in coordination with system owners, engineers and stakeholders and are consistent with appropriate infrastructure and security engineering requirements
• Assess and prioritize cybersecurity risks and vulnerabilities across the organization's technology landscape
• Follow up on remediation of vulnerabilities
• Participate in design and implementation of new security controls
• Stay current with cybersecurity threats and trends, providing ongoing intelligence and insights to inform security decision-making.
• Create and modify procedural documentation as needed
• Collaborate with cross-functional teams to ensure compliance with regulatory standards and frameworks, such as SOX, HIPAA, or NIST
• Develop and maintain incident response plans, disaster recovery plans, and business continuity strategies to ensure resilience in the face of cybersecurity threats.
• Ensure that all information systems operate in accordance to set standards
• Participates in an on-call rotation with department
• Establish and maintain effective working relationships within the department, the Strategic Business Unit/Strategic Support Unit and the Company. Interact appropriately with others in order to maintain a positive and productive work environment.

Main Requirements/Knowledge

• Completed Bachelors Degree
• Advanced Level of English
• Experience in a cyber-security operations environment including 4+ years of technical leadership
• CISSP, CISM, CISA certifications preferred; other security relevant certifications considered (e.g. SANS GIAC-GSEC, GCED, GCFW, GCIA, GCIH, GISP, GSLC).
• Knowledge of CISCO ASA solutions specifically remote access
• Technical “hands-on” proficiency with at least three  security-related systems and applications (Vulnerability software, next generation firewalls, IDS/IPS, SIEM, Data Loss Prevention).
• Technical proficiency with security-related systems and applications, especially mainstream OS’s (e.g. Microsoft Windows and Linux), Vulnerability Scanners, SIEM, and anti-malware tools, user provisioning systems and intrusion detection, automated policy compliance, and desktop security tools.
• Experience in documenting and maintaining processes and procedures.
• Knowledge of information security principles, including risk assessment, intrusion detection, network access control (NAC), encryption, threat and vulnerability management.
• Knowledge of network infrastructure, including routers, switches, firewalls, VPN, and associated network protocols and concepts; CCNA preferred.
• Knowledge of SANS Twenty Critical Controls information security policies, procedures, guidelines, and methodologies desired.
• A strong familiarity with cryptographic concepts and their practical application.
• Experience in securing Cloud environments such as Azure, AWS, SAP, etc.
• Knowledge and Understanding of the CI/CD Pipeline along with tools such as Jenkins and Bamboo
• Experience in driving technology solutions in large, complex organizations.
• Proven focus in metrics-driven delivery: defining Service Level Agreements (SLAs), monitoring SLAs, enhancing environment to meet SLAs.
• Experience in driving process and technology re-engineering using industry practices e.g., COBIT, ITIL, CMMi.

Ball Corporation is proud to be an Equal Opportunity Employer. We actively encourage applications from everybody. All qualified job applicants will receive consideration without regard to race, color, religion, creed, national origin, aboriginality, genetic information, ancestry, marital status, sex, sexual orientation, gender identity or expression, physical or mental disability, pregnancy, veteran status, age, political affiliation or any other non-merit characteristic.

When you join Ball you belong to a team of over 16,000 members worldwide. Our products range from infinitely recyclable aluminium cans, cups to aerosol bottles that enable our customers to contribute to a better world.

Each of us has a deep commitment to diversity and inclusion which is the foundation of our culture of belonging.

Everyone at Ball is making a difference by doing what we love. Because what we create may change, but what we will always make is a difference.

Please note the advertised job title might vary from the job title on the contract due to local job title structure and global HR systems.
No agencies please.

Job Grade: Global Grade 11