Skip to content

Senior Security Analyst

General information

Location:

USA - USA - Remote

Function:

Security

Ref #:

20210019722

Description & Requirements

Description

As a Senior Security Analyst you will be part of the Security Operations Center team working with events and incidents as they come in. You will be monitoring infiltration attempts, analyzing logs, looking for patterns to ensure infiltration attempts are identified and dealt with in a timely manner. You will identify attack patterns and how to defend against them, and continuously evolve the team to be more efficient through the creation of tools. Build our detection and response, and incident response capabilities, provide subject matter expertise in data analysis and risk assessments and respond to security incidents. Security Analysts are involved with highly technical operations and forensic analysis. You will be part of our global security operations center that follows a follow-the-sun structure, working to ensure continuous monitoring, detection and response to security events affecting UKG and our customers. You will work closely with our security operations centers in Fort Lauderdale, Singapore, and Paris.

Due to the nature of the work, you are required to have on-call duties on weekends. Additional work hours may also be required during an incident investigation.

Primary/Essential Duties and Key Responsibilities:

• Continuously monitor assets and respond to active threats to and within the enterprise
• Detect, report, assess, and respond to information security incidents.
• Develop and maintain detection content to detect nefarious activities within the enterprise
• Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats to network security.
• Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack.
• Continuously improve processes through automation and tools creation
• Read, interpret, write, modify, and execute simple scripts (e.g., Perl, VBScript) on Windows and UNIX systems (e.g., those that perform tasks such as: parsing large data files, automating manual tasks, and fetching/processing remote data).
• Provide 24/7 monitoring

Qualifications

Required Qualifications:

• Bachelor's degree in computer science or a related discipline
• Working professional with 5-8 years of relevant work experience
• Knowledge of operating systems.
• Knowledge of OSI model and underlying network protocols (e.g., TCP/IP).
• Knowledge of packet-level analysis using appropriate tools (e.g., Wireshark, tcpdump).
• Knowledge of the common networking and routing protocols (e.g. TCP/IP), services (e.g., web, mail, DNS), and how they interact to provide network communications. Knowledge of network traffic analysis methods
• Scripting knowledge, Python preferred.
• Knowledge of incident response and handling methodologies.
• Knowledge of incident categories, incident responses, and timelines for responses.

Preferred Qualifications:

• Knowledge of the common attack vectors on the network layer.
• Knowledge of different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks). Knowledge of cyber attackers (e.g., script kiddies, insider threat, non-nation state sponsored, and nation sponsored).
• Knowledge of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).
• Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
• Skill in performing packet-level analysis.
• Skill in developing and deploying signatures.

#LI-REMOTE

Corporate overview

Here at UKG, Our Purpose Is People. UKG combines the strength and innovation of Ultimate Software and Kronos, uniting two award-winning, employee-centered cultures. Our employees are an extraordinary group of talented, energetic, and innovative people who care about more than just work. We strive to create a culture of belonging and an employee experience that empowers our people. UKG has more than 13,000 employees around the globe and is known for its inclusive workplace culture. Ready to be inspired? Learn more at www.ukg.com/careers

EEO Statement

Equal Opportunity Employer

Ultimate Kronos Group is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive considerations for employment without regard to race, color, religion, sex, age, disability, marital status, familial status, sexual orientation, pregnancy, genetic information, gender identity, gender expression, national origin, ancestry, citizenship status, veteran status, and any other legally protected status under federal, state, or local anti-discrimination laws. 


View The EEO is the Law poster and its supplement. 

View the Pay Transparency Nondiscrimination Provision

UKG participates in E-Verify. View the E-Verify posters here.


Disability Accommodation

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com or please call 1 (978) 250 9800.

Apply