Friday, August 29, 2014

ADP posted a job you might be interested in



ADP



Lead CIRC Analyst

Greater New York City Area, US - Computer Software, Financial Services, Human Resources

Requisition #: 79399

Job Title: Lead CIRC Analyst

Country: United States

State: New Jersey

City: Roseland

Employment Status: Full Time

Job Responsibilities:

(Description):

At ADP we are driven by your success. We engage your unique talents and perspectives. We welcome your ideas on how to do things differently and better. In your efforts to achieve, learn and grow, we support you all the way. If success motivates you, you belong at ADP.



Insightful Expertise is a core value at ADP and in Corporate, our colleagues around the world depend on us for that. Whether it's a new product in development, a new technology under consideration, a new business acquisition or a new office opening - Corporate plays a critical role in ADP's growth. We are a passionate partner committed to ADP's success - and are looking for like-minded individuals who want to be part of our winning team.



The ADP-Critical Incident Response Team (CIRC) team within ADP's Global Security Organization (GSO) is responsible for monitoring multiple sources of analytical computer and physical security related information. The CIRC's main focus is to take this disparate information, and turn it into strategic and tactical intelligence that is relevant to protecting ADP's lines of business. The output of this analysis will be used to ensure a consistent and coordinated response to ongoing security threats ensuring ADP can continue to operate safely and securely.



The Lead CIRC Analyst must have a holistic understanding of the modern cyber security landscape with a strong background in incident response and process documentation. They will handle high complex security threats generated by ADP's Trusted Platform Security Initiative (TPSI), 3rd party and internal intelligence, and manual identification by ADP associates and clients. The analyst will hunt, identify, analyze, develop containment and remediation plans as per the incident response processes for all incidents types to include those originating in the BUs. The analyst will be required to develop and maintain a liaison relationship with BSOs, BUs, Risk Assessment, and other CIRC teams. This analyst primarily responsibility is to hunt for advanced cyber threats, therefore a successful candidate will have advanced technical skills in some of the following areas: network forensics / deep packet inspection, host forensics, malware analysis, ability to effectively manage critical incidents. Additionally, the Lead CIRC Analyst must have the requisite knowledge to lead an incident, provide high level communications, manage assigned analysts, develop and document procedures, and ensure appropriate reporting.



Responsibilities:




  • Hunt for advanced cyber threats; conduct technical analysis and assessments of incidents, including malware analysis, packet level analysis, and system level forensic analysis.

  • Define, build, test and implement correlation rules that support the monitoring and enforcement of the ADP security policies.

  • Produce metrics that support GSO's strategic direction.

  • Gather current best practices from various key stakeholders.

  • Assist in the development and maintenance of new procedural documentation including newly developed correlation rules. This also includes the training of appropriate security analysts.

  • Coordination of incident response activities (escalations, notifications, etc.).

  • Monitoring, managing, and coordinating the information collection and cataloging of activities from a variety of public and private security related information sources, as well as documenting the initial analysis of vulnerability reports and how they may relate to ADP.

  • Perform other duties as assigned.








Experience, Skills, Academic:

Experience:




  • 7 to 10 years experience




Education:




  • BA/BS or equivalent

  • CISSP, GSEC, or GCIA

  • Any of the following are a plus: GISP, GSLC, GCFE, GCFA, GREM, GCIH, PMP




Required Skills:




  • Experienced in security incident activities.

  • Strong documentation and presentation skills.

  • Excellent analytical skills

  • Understanding of TCP/IP and network communications

  • General knowledge of web content scripting languages.

  • Knowledge of computer security forensics and security vulnerabilities

  • Strong knowledge of interpreting the log output of Windows and Unix logs

  • Experience producing architectural diagrams and overviews for both business and technical audiences.

  • Some exposure to collaborative workflow and documentation systems (Wiki documentation, project blogging)

  • Some experience providing training and mentoring, preferably to both onshore and offshore teams.




Desired Skills:




  • Familiarity with interpreting the log output of a wide selection of device classes, spanning networking and host

  • Infrastructure service devices

  • Packet-level behavioral familiarity with most major TCP/IP application protocols

  • Knowledge of basic packing and obfuscation techniques

  • Strong shell or other programming skills

  • Knowledge of how to operate a debugger (IDA Pro, OllyDbg)

  • SQL familiarity to generate nested queries and joins in a major SQL dialect

  • Functional knowledge of shellcode fundamentals

  • Well versed in multiple security technologies such as SIEM; Intrusion Detection Systems; End-point security; Web Proxy/Content Filtering; Active Directory, PKI, Radius, RSA SecureID, Log Analysis

  • Broad knowledge of business-impacting security scenarios and viable methods to detect these scenarios (Cross device log correlation).

  • Functional experience with text and data representation and manipulation (XML, HTML, Regular Expressions, Wiki Markup, SQL)

  • Implementation experience with some of the major centralized authentication systems (LDAP, KERBEROS, NIS, RADIUS)

  • General understanding of key components of international internet architecture, both technical and political. Infrastructure and Authentication Systems



    About ADP: We power organizations with insightful solutions that drive business success. Consistently named one of the "Most Admired Companies" by FORTUNE® Magazine, and recognized by Forbes® as one of "The World's Most Innovative Companies," ADP has over a half-million clients around the globe and 60+ years of experience as a world-wide leader of business outsourcing solutions.



    ADP is an Equal Opportunity Employer; Minorities/Women/Veterans/Disabled. ADP believes that diversity leads to strength.



    ADPCORP







    Job Category: Technology

    Area of Interest: Security & Disaster Recovery

    Locations: United States, Roseland, NJ






No salary provided



Posted August 29, 2014 at 05:01AM from LinkedIn http://ift.tt/1wMigjh

via IFTTT
Posted by at
Labels: ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)