Critical Incident Response Center (CIRC) Analyst

Angajator: Automatic Data Processing (ADP) Romania
Domeniu:
  • Inginerie
  • IT Hardware
  • IT Software
  • Tip job: full-time
    Nivel job: 1 - 5 ani experienta
    Orase:
  • BUCURESTI
  • Actualizat la: 08.12.2016
    Scurta descriere a companiei

    Do you want to be in the business of your success ?
    Join ADP, we provide employer services to 600,000 clients in 78 different countries worldwide, we pay approximately 31 million people around the world each payday.
    At ADP, we have a great story to tell, in a relaxed and friendly environment working on our growth with you, the best professionals .

    Cerinte

    REQUIRED SKILLS
    • Understanding of modern physical/cyber threats & vulnerabilities, fraud, cyber security landscape
    • Familiarity with network architectures, switch/router/proxy/firewall administration, monitoring & hardening
    • Experience in system administration & hardening (web/mail/DNS/file servers) Windows, UNIX, Linux
    • Ability to interpret and correlate the log output of Windows, Unix and networking equipment
    • Proficiency in some scripting languages (perl, python, shell) or other programming languages
    • Familiarity with databases and ability to generate SQL queries, including nested queries

    PREFERED SKILLS
    • Ability to handle security incidents by prediction, prevention, detection and response
    • Experience with advanced security tools such as RSA Archer, SIEMs and HIDS/NIDS
    • Familiar with security technologies such as End-point security, Content Filtering, PKI, Radius
    • Experience with some of major authentication systems (LDAP, KERBEROS, RADIUS) & AD
    • Familiarity with text/data representation & manipulation (XML, HTML, Regular Expressions)
    • Packet-level behavioral familiarity with TCP/IP application protocols & deep packet inspection
    • Knowledge of data and executable file types and extracting information from them
    • Knowledge of basic packing and obfuscation techniques and shellcode fundamentals
    • Financial fraud detection and response experience auditing in a large global organization
    • Familiar the general concepts in facilitating money movement electronically
    • Accustomed with operating system internals (file handles, threads, semaphores, stack, heap)
    • Knowledge of malware landscape
    • Knowledge of business-impacting security scenarios and viable detection methods

    OTHER REQUIREMENTS
    • BS degree in computer science/engineering/information technology or equivalent is preferred
    • Minimum of 2 years of IT/cyber security experience
    • Professional certifications are a plus
    • Excellent analytical, documentation, communication, presentation and influencing skills
    • Team player, able to multi-task under minimal supervision and achieve results
    • Ability in providing training and mentoring
    • Comfortable to work in day shifts

    REPORTING
    • Regional Manager of Critical Incident Response Center

    Responsabilitati

    MISSION
    ADP’s Critical Incident Response Center (CIRC) within ADP’s Global Security Organization (GSO) is responsible for monitoring multiple sources of analytical computer and physical security related information. The CIRC’s main focus is to take this disparate information, and turn it into strategic and tactical intelligence that is relevant to protecting ADP’s lines of business. The output of this analysis will be used to ensure a consistent and coordinated response to ongoing security threats ensuring ADP can continue to operate safely and securely.

    COMPETENCY OF THE INCIDENT RESPONSE ANALYST
    • Monitors & processes regular alerts in queue following standardized processes and documentation
    • Follows documented escalation processes
    • Basic correlation of IOFs/IOCs
    • Triaging of alerts in queue
    • Suggests ways to improve CIRC documented processes
    • Performs correlation of security incidents
    • Supports incident response work streams, as directed by incident lead coordinator
    • Collaborate with Content Dev & Threat Intel when needed
    • Maintains awareness of incidents from other units (NOC, GNS, BSIRT)
    • First level Responder for declared incidents
    • Maps work streams for declared incidents
    • Mentors junior analysts
    • All other duties as directed by CIRC manager