Lead Security Analyst - Containers and Cloud

Lead Security Analyst
Unlock Your Career Potential: Global Security Organization at ADP. Do you have a passion for going on the offensive to safeguard critical information? As ADP's Global Security Organization (GSO), we know that our clients rely on us for human capital management solutions, but beyond that, they entrust us with one of their most valuable assets their employee data. We are honored by this trust and are laser focused on securing data at every step in the information lifecycle, ensuring integrity, confidentiality and compliance with industry and government regulations at all times. From the cloud to the data center and across every emerging device, you'll join a team of experts in the GSO who are always staying one step ahead in this ever-changing world of data by continually evolving our strategies and technologies to protect ADP and our clients.
As Lead Security Analyst you will join a highly skilled team providing world-class infrastructure and network security assessments and security consultation for ADP's Global Security Organization (GSO). This team is responsible for the execution of ADP's global Compliance and Vulnerability Management Program (CVM) program for infrastructure and network across Cloud and on-premise data centers. Services provided to the organization include: Cloud Account Compliance, Secure OS Build Compliance as well as vulnerability management including Zero-Day Vulnerability Response.
The Lead Security Analyst will have a deep cross-functional understanding of Operating System, Application and Network layer security in enterprise environments. They will be required to interact with various teams including: Converged Security Architecture, Security Engineering, Security Operations, Threat and Incident Response as well as Application Development, Project Management and global IT Teams to develop and enhance the security program.
Responsibilities Include:

• Drive program ensuring ADP standards are maintained across on premise and cloud provider data centers.
• Lead efforts for continual process improvement in infrastructure security assessments, reporting and remediation as part of the CVM program to reduce risk.
• Provide input/review and development of security and compliance controls.
• Participate and support internal/external audits including ISO.
• Maintain an expert level understanding of attacks, vectors and emergent threats.
• Mentor and provide guidance for offshore Team members

Experience You'll Need:

• Deep understanding of information security specifically in the realm of vulnerability management (VM)
• Experience building VM programs - defining and building metrics, automation of response and remediation (guidance)
• Knowledge of cloud architectures and concepts in major platforms such as AWS and Azure (openstack a plus)
• Candidate should be very thorough in internet technologies and versed with development best practices.
• Understanding CI/CD pipelines covering source control, integration, and deployment (ex: Bitbucket, Jenkins, Rally, JIRA, Artifactory, Nexus, SonarQube, git).
• Previous software engineering/architecture experience (Java, C#,.Net, JavaScript) is a plus
• Strong analytical/problem solving skills and cross functional knowledge across multiple development and security disciplines.
• Understanding of Cloud and Container security and compliance tools.
• Ability to communicate security-related concepts to a broad range of technical and non-technical staff.
• Ability to create remediation guidance.
• Must possess a high degree of integrity, be trustworthy, and have the ability to lead and inspire change.
• Knowledge in securing cloud deployment and containers (familiarity with Ansible, Chef, DeMisto, Docker, Helm, and/or Kubernetes).
• Knowledge of scripting/troubleshooting preferred along with some experience with development of RESTful and SOAP web services (in terms of automating various parts of the program)
• Familiarity with micro services architecture and design Patterns a plus

To Succeed In This Role:

• Bachelor's Degree in Computer Science, Information / Cyber Security, Computer Systems Engineering, Computer Information Systems or equivalent education and experience required.
• Any of the following are a plus but not necessary: CEH, CISSP, CSSLP, GCIA, GPEN, GWAPT, Fortify Certified Associate / Professional / Expert.

YOU'LL LOVE WORKING HERE BECAUSE YOU CAN:

• Team collaboration. Courage comes from how associates are willing to have difficult conversations, speak up, be an owner, and challenge one another's ideas to net out the best solution.
• Deliver at epic scale. We deliver real user outcomes using strong judgment and good instincts. We're obsessed with the art of achieving simplicity with a focus on client happiness and productivity.
• Be surrounded by curious learners. We align ourselves with other smart people in an environment where we grow and elevate one another to the next level. We encourage our associates to listen, stay agile, and learn from mistakes.
• Act like an owner & doer. Mission-driven and committed to navigating change, you will be encouraged to take on any challenge and solve complex problems. No tasks are beneath or too great for us. We are hands-on and willing to master our craft.
• Give back to others. Always do the right thing for our clients and our community and humbly give back to the community where we live and work. Support our associates in times of need through ADP's Philanthropic Foundation.
• Join a company committed to equality and equity. Our goal is to impact lasting change through our actions.

Diversity, Equity, Inclusion & Equal Employment Opportunity at ADP: ADP affirms that inequality is detrimental to our associates, our clients, and the communities we serve. Our goal is to impact lasting change through our actions. Together, we unite for equality and equity. ADP is committed to equal employment opportunities regardless of any protected characteristic, including race, color, genetic information, creed, national origin, religion, sex, affectional or sexual orientation, gender identity or expression, lawful alien status, ancestry, age, marital status, or protected veteran status and will not discriminate against anyone on the basis of a disability. We support an inclusive workplace where associates excel based on personal merit, qualifications, experience, ability, and job performance.
Ethics at ADP: ADP has a long, proud history of conducting business with the highest ethical standards and full compliance with all applicable laws. We also expect our people to uphold our values with the highest level of integrity and behave in a manner that fosters an honest and respectful workplace. Click https://jobs.adp.com/life-at-adp/ to learn more about ADP's culture and our full set of values.