IT Security Threat Intelligence Engineer, Sr. Job Listing at Paycom in Oklahoma City, OK (Job ID 309383)

Description

The Senior IT Security Threat Intelligence Engineer functions include day-to-day operations supporting the organization's insider threat, internal/external investigations and threat intelligence programs. Secondary tasks will include the development and/or implementation of support solutions, which fit into the operations and security architecture. The Senior IT Security Threat Intelligence Engineer is expected to be fully aware of the enterprise's security goals as established by its stated policies, procedures and guidelines and to actively work towards upholding those goals.

RESPONSIBILITIES

• Lead investigations into abnormal activity, notable security events, and escalated incidents.
• Lead eDiscovery and investigation initiatives of the business.
• Engineer eDiscovery processes and systems of record.
• Architect Threat Intelligence platforms and programs with an emphasis on improvement and accuracy.
• Provide advanced escalation support and training to the threat intelligence team.
• Document and report on specific duties, activities, problems solved, and issues resolved.
• Determine criticality of potential security threats and decide whether to engage in Incident Response.
• Incident Response support includes following the PICERL model.
• Ability to determine potential impact and whether escalation and reporting are required.
• Develop improvements and enhancements to inbound alerts to improve alerting and decrease false positives.
• Support Company operation services that require assistance from Security for additional enhanced analytics, data acquisition, and guidance.
• Collaborate with other Company departments for security enhancements, security solution specifications, and best practices training for security principles.
• Maintain up-to-date detailed working knowledge of the IT security industry.
• Maintain up-to-date baselines for the secure configuration and operation of all devices, whether under Information Security control (i.e., security tools) or other asset owners (i.e., workstations, servers, network devices, etc.).
• Architect monitoring of all necessary security solutions for efficient and appropriate operations (consistent controls, appropriate logging, regulated updates, etc.).
• Perform additional duties and assignments as requested.

Education/Certification:

• Bachelor's Degree in Technology

Experience:

• 7+ years of IT and/or security administration

PREFERRED QUALIFICATIONS

Education/Certification:

• Industry Certification (GCIH, GMON, CISSP, CISM, etc.) preferred

Experience:

• 7+ years of Threat Intelligence
• 7+ years of eDiscovery
• 5+ years of Digital Forensics

Skills/Abilities:

• Advanced knowledge of IPS/IDS, packet/traffic analysis and related tools,
• Knowledge of information security principles and practices including but are not limited to the following areas: Vulnerability Scanning; Security Information and Event Management systems; Next Generation Firewalls; Network Intrusion; Host Based Security; Data Loss Prevention; Malware Prevention, Digital Forensics, Application Penetration Testing, Threat Intelligence, OSINT.
• Experience with TCP/IP, Microsoft operating systems, and networks.
• Comprehension of the following programming or computer languages is recommended but not required: T-SQL (MySQL/MSSQL), PHP, Python, Perl, JavaScript, C#, HTML.
• Experience with the following Operating Systems is recommended but not required: Linux distributions (Ubuntu, Kali Linux, Debian), iOS (current versions), Android OS (current versions), macOS (current versions).
• Experience with Digital Forensics.
• Experience with Threat Intelligence tools.
• Experience with SIEM tools.
• Experience with eDiscovery tools.
• Strong analytical and problem-solving skills.
• Experience participating in investigations with a focus on completeness and accuracy.
• Demonstrated ability to build and develop a highly functioning team.
• Highly responsive with an ability to handle escalations quickly and professionally.
• Excellent verbal and written communication skills.
• Ability to maintain effective working relationships with supervisor and coworkers.
• Ability to interpret and apply laws, regulations, and policies.

Paycom is an equal opportunity employer and prohibits discrimination and harassment of any kind. Paycom makes employment decisions on the basis of business needs, job requirements, individual qualifications and merit. Paycom wants to have the best available people in every job. Therefore, Paycom does not permit its employees to harass, discriminate or retaliate against other employees or applicants because of race, color, religion, sex, sexual orientation, gender identity, pregnancy, national origin, military and veteran status, age, physical or mental disability, genetic characteristic, reproductive health decisions, family or parental status or any other consideration made unlawful by applicable laws. Equal employment opportunity will be extended to all persons in all aspects of the employer-employee relationship. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, training, promotion, discipline, compensation benefits, and separation of employment. The Human Resources Department has overall responsibility for this policy and maintains reporting and monitoring procedures. Any questions or concerns should be referred to the Human Resources Department. ****To learn more about Paycom's affirmative action policy, equal employment opportunity, or to request an accommodation - Click on the link to find more information: paycom.com/careers/eeoc