Skip to content

Security Analyst

General information

Location:

Florida - Florida - Remote, Massachusetts - Massachusetts - Remote

Function:

Security

Ref #:

20210019841

Description & Requirements

Description

As a Security Analyst II you will be part of the Security Operations Center team working with events and incidents as they come in. You will be a member of the incident management function serving the security operations and incident response teams by managing security incidents and enabling technical incident responders to focus on the investigation. You will be a key member of the incident response team responsible for orchestrating the analysis, containment, and recovery strategy during a response with the support from experienced security professionals. You will be part of our global security operations center that follows a follow-the-sun structure, working to ensure continuous monitoring, detection and response to security events affecting UKG and our customers. You will work closely with our security operations teams in Fort Lauderdale, Lowell, Singapore, and Paris.
Due to the nature of the work, it may require on-call duties and some weekend work. Additional work hours may also be required during an incident investigation.
Primary/Essential Duties and Key Responsibilities:
We are seeking candidates with experience managing information security incidents, ideally with a background in incident response. We are looking for someone who can collaboratively help manage a program that focuses on incident response management. You will play a key role starting from the preparation phase by ensuring workflows are being followed and in place, coordinating and communicating with critical stakeholders including legal, privacy and global security, and through the post- incident stage holding lessons learned with a customer first and service mindset.
• Serves as internal security consultant to the organization
• Supports the incident response process, responding to security incidents across the organization that will vary in scope and severity
• Coordinate teams across security and the business as part of the incident response process to ensure appropriate individuals are involved in incident analysis, containment, and resolution
• Provides regular written and verbal updates and consistent communication to management and other stakeholders as part of an incident response
• Executes and oversees internal projects to help mature the incident response program. This may include process development/improvement, policy creation and maintenance and selection and implementation of technical solutions
• Perform incident triage, to include determining scope, urgency, and potential impact, identifying the specific vulnerability, and making recommendations that enable expeditious remediation
• Receive and analyze network alerts from various sources within the enterprise and determine possible causes of such alerts
• Conduct incident response tabletop exercises with response teams
• Write and publish after action reviews. Conduct lessons learned, document key risks after incident closure, bringing attention to top risks and drive remediation with stakeholders
• Assist with security compliance audits as it relates to incident response

Qualifications

Required Qualifications:
• Experience in security incident management and or response including analysis of events, review of suspected malicious activity, identification of indicators of compromise and providing guidance on resolution and remediation activities
• Strong understanding of incident response frameworks and threat landscapes
• Excellent communicator, written and verbal, ability to present to technical and non-technical audiences
• Excellent analytical skills in order to identity incident response tasks and appropriate measures needed to help mitigate those incidents. Must be comfortable in conducting independent research of issues and inquires in order to provide guidance when requested.
• Knowledge of handling various incident categories, timelines for responses and incident handling methodologies
• Knowledge of incident categories, incident responses, and timelines for responses as well as incident response and handling methodologies.
• Knowledge of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).
• Knowledge of common system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, phishing, covert channel, replay, return-oriented attacks, malicious code).
• Knowledge of operating systems including Windows, Linux and UNIX
• Ability to interpret the information collected by network and operating system tools (e.g. Nslookup, Ping, Traceroute, Firewalls, and SIEMs)
• Ability to function in high stressed situations with professionalism and urgency to address incidents
• Bachelor's degree in computer science or a related discipline
• 3-5 years of relevant work experience
#LI-Remote

Corporate overview

Here at UKG, Our Purpose Is People. UKG combines the strength and innovation of Ultimate Software and Kronos, uniting two award-winning, employee-centered cultures. Our employees are an extraordinary group of talented, energetic, and innovative people who care about more than just work. We strive to create a culture of belonging and an employee experience that empowers our people. UKG has more than 13,000 employees around the globe and is known for its inclusive workplace culture. Ready to be inspired? Learn more at www.ukg.com/careers

EEO Statement

Equal Opportunity Employer

Ultimate Kronos Group is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive considerations for employment without regard to race, color, religion, sex, age, disability, marital status, familial status, sexual orientation, pregnancy, genetic information, gender identity, gender expression, national origin, ancestry, citizenship status, veteran status, and any other legally protected status under federal, state, or local anti-discrimination laws. 


View The EEO is the Law poster and its supplement. 

View the Pay Transparency Nondiscrimination Provision

UKG participates in E-Verify. View the E-Verify posters here.


Disability Accommodation

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com or please call 1 (978) 250 9800.

Apply