Job Title: Lead Incident Response Analyst
At UKG, we're on a mission to inspire every organization to become a great place to work through our award-winning HR technology.
About the Role:
This is a hybrid position requiring 3 days a week in our Kilkenny office and 2 days a week working from home. You will be part of UKG's Global Security Operations Center (GSOC) team investigating events of interest and incidents as they are validated, prioritized, and categorized by UKG's 24×7 L1 and L2 analyst teams.
Key Responsibilities:
* Identify, develop, and operationalize security operations metrics to assist in maturing and enhancing UKG's visibility and global security capabilities.
* Continuously improve UKG's incident response processes through automations, standardization, and tools development, customization and/or controls deployments.
* Collaborate with cross-functional and geographically dispersed teams to identify, develop, and implement containment, eradication, and recovery strategies.
* Lead and provide subject matter expertise during active investigations of events of interest and security incidents escalated to and as identified within the regional Security Operations Center.
* Escalate tickets as required to GSOC Director for additional scrutiny and incident declaration.
* Identify, approve, and implement blocking, listing and other mechanisms to promote a robust security posture.
* Keep up to date with the latest security and technology developments, research/evaluate emerging cyber security threats and ways to manage them to proactively enhance UKG's security posture.
* Participate in threat hunts, blue team/purple team activities by simulating real-world cyber-attacks to evaluate the effectiveness of security defenses and recommend improvements.
* Be the escalation point for all junior analysts to aid and facilitate the accurate and expedient identification, verification, and remediation of security incidents.
* Mentor, coach and facilitate enablement opportunities to develop and enhance UKG's junior security analysts.
Qualifications:
* Bachelor's degree in computer science or a related discipline.
* CISSP, CCSP, GIAC or other relevant cyber security certifications.
* Working professional with 6+ years of relevant Security/SOC experience.
* Practical experience in leading incident response investigations, performing analysis, and implementing containment strategies.
* Experience in conducting investigations involving network forensics, malware analysis, and disk and memory forensics, focusing on any combination of Windows, macOS, or Linux platforms.
* Experience conducting incident response and forensic investigations in major Cloud Service Providers (CSP).
* Experience with tools such as Splunk, Elastic Search, EDR solutions.
* Excellent verbal and written communication skills.
* Experience working in a global organization is a plus.
Preferred Qualifications:
* Knowledge of the common attack vectors on the network layer, different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks).
* Knowledge of cyber attackers (e.g., script kiddies, insider threat, non-nation state sponsored, and nation sponsored) and cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).
* Thorough understanding of system and application security threats and vulnerabilities, enabling proactive identification and mitigation strategies to safeguard critical assets and data (e.g. SQL Injection, Cross-Site Scripting (XSS), Malware Infection, Zero-Day Exploits, Phishing Attacks, Denial of Service (DoS) Attacks, Man-in-the-Middle (MitM) Attack, Buffer Overflows, Weak Authentication Mechanism, Unpatched Software: Vulnerability).
Where We're Going:
UKG is on the cusp of something truly special. Worldwide, we already hold the #1 market share position for workforce management and the #2 position for human capital management. Tens of millions of frontline workers start and end their days with our software, with billions of shifts managed annually through UKG solutions today. Yet it's our AI-powered product portfolio designed to support customers of all sizes, industries, and geographies that will propel us into an even brighter tomorrow
UKG is proud to be an equal opportunity employer and is committed to promoting diversity and inclusion in the workplace, including the recruitment process.