Here at UKG, our purpose is people™. Our HR, payroll, and workforce management solutions help organizations unlock happier outcomes for all. And our U Krewers, who build those solutions and support our business, are talented, collaborative, and innovative problem-solvers. We strive to create a culture of belonging and an employee experience that empowers our people – both at work and at home. Our benefits show that we care about the whole you, from adoption and surrogacy assistance to tuition reimbursement and wellness programs. Our employee resource groups provide a welcoming place to land, learn, and connect with those who share your passions and interests. What are you waiting for? Learn more at www.ukg.com/careers  #WeAreUKG 

Description

As a Senior Security Analyst you will be part of the Security Operations Center team working with events and incidents as they come in. You will be monitoring infiltration attempts, analyzing logs, looking for patterns to ensure infiltration attempts are identified and dealt with in a timely manner. You will identify attack patterns and how to defend against them, and continuously evolve the team to be more efficient through the creation of tools. build our detection and response, and incident response capabilities, provide subject matter expertise in data analysis and risk assessments and respond to security incidents. Security Analysts are involved with highly technical operations and forensic analysis. You will be part of our global security operations center that follows a follow-the-sun structure, working to ensure continuous monitoring, detection and response to security events affecting UKG and our customers. You will work closely with our security operations centers in Weston, Singapore, and Paris.

Due to the nature of the work, you are required to have on-call duties on weekends. Additional work hours may also be required during an incident investigation.
Primary/Essential Duties and Key Responsibilities:
● Detect, report, assess, and respond to information security incidents.
● Develop and maintain detection content to detect nefarious activities within the enterprise
● Build metrics on efficiency, effectiveness, and coverage, and demonstrate proof of value
● Continuously improve processes through automation and tools creation
● Isolate and remove malware.
● Maintain active investigations of security events escalated to and within the Security Operations Center
● Perform initial, forensically sound collection of images and inspect to discern possible mitigation/remediation on enterprise systems.
● Mentors, coaches and trains Security Analysts and Security Analysts IIs and serves as the point person for escalation issues that may arise
● Provide 24/7 monitoring

Qualifications

Basic Qualifications:
• Bachelor's degree in computer science or a related discipline
• Working professional with 5 years of relevant Security/SOC experience
• Experience with tools such as Splunk, Elastic Search, EDR solutions.

Preferred Qualifications:
• Knowledge of the common attack vectors on the network layer, different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks). Knowledge of cyber attackers (e.g., script kiddies, insider threat, non-nation state sponsored, and nation sponsored) and cyber attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).
• Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
• Excellent verbal and written communication skills.
• Experience working in a global organization is a plus

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email UKGCareers@ukg.com.