Sr Threat Hunter

Unlock Your Career Potential: Global Security Organization at ADP. Do you have a passion for going on the offensive to safeguard critical information? As ADP's Global Security Organization (GSO), we know that our clients rely on us for human capital management solutions, but beyond that, they entrust us with one of their most valuable assets -- their employee data. We are honored by this trust and are laser-focused on securing data at every step in the information lifecycle, ensuring integrity, confidentiality, and compliance with industry and government regulations at all times. From the cloud to the data center and across every emerging device, you'll join a team of experts in the GSO who are always staying one step ahead in this ever-changing world of data by continually evolving our strategies and technologies to protect ADP and our clients.
In this role, you will be responsible for leading, building, and maturing the threat hunt program, including executing the full hunt lifecycle, creating new detection methodologies, and providing expert support to incident response and monitoring functions.
You will also directly support the Critical Incident Response Center (CIRC) by applying analytic and technical skills to investigate intrusions, identify malicious activity and potential insider threats, and perform incident responses based on TTPs.
To thrive as a threat hunter, you will use data analysis, threat intelligence, and cutting-edge security technologies.
We strive for every interaction to be driven by our CORE values: Insightful Expertise, Integrity is Everything, Service Excellence, Inspiring Innovation, Each Person Counts, Results-Driven, - Social Responsibility.
RESPONSIBILITIES:
Here's what you can expect on a typical day in the life of a Lead Threat Hunt Analyst at ADP.

• Developing, maturing, and maintaining TTP or attack pattern detection techniques
• Perform the full threat hunting lifecycle, Ideation, and creation of proactive hunt based on the behavioral analysis provided by the intel team, incident, or vendors
• Build security utilities and tools for internal use and leverage automation that enable you and your teammates to operate at high speed and broad scale.
• Participate in Hunt missions using threat intelligence, analysis of anomalous log data, and results of brainstorming sessions to detect and eradicate threats
• Analyze large and unstructured data sets to identify trends and anomalies indicative of malicious activities.
• Assist in incident response activities such as host triage and retrieval, malware analysis, remote system analysis, end-user interviews, and remediation efforts.

A college degree is great but not required. What's more important is having the skills and experience to do the job.
QUALIFICATIONS REQUIRED:

• 5+ years of relevant cyber security experience in IT Security, Incident Response, or network security with a strong knowledge of working in a Security Operations Center
• Ability to apply creative problem solving, analytical and critical thinking when approaching issues.
• Possess or develop an "assume-breach mindset" to get to "the bottom" of a given hunt.
• Exceptional ability to conduct cyber security investigations, analyze and distill relevant findings and determine the root cause.
• Strong knowledge of web technologies, networking protocols, Microsoft Windows, and Linux/Unix platforms and tools with related experience in corporate infrastructures.
• Strong technical experience and familiarity of various types and techniques of cyber-attacks, with the incident response and threat hunting lifecycles.
• Excellent communication skills (verbal and written) along with teamwork collaboration
• Demonstrates excellent time management and experience executing work processes in a fast-paced technical environment
• Experience in Log and Event analysis as well as correlation of very large datasets
• Experience in creating host-based and network-based signatures suited for large-scale hunting, detection, and tracking threats

Preference will be given to candidates who have the following:

• [TABP enters]

Explore our COVID-19 page https://tech.adp.com/covid19/ to understand how ADP is approaching safety, travel, the hiring interview process, and more.
Diversity, Equity, Inclusion & Equal Employment Opportunity at ADP: ADP affirms that inequality is detrimental to our associates, our clients, and the communities we serve. Our goal is to impact lasting change through our actions. Together, we unite for equality and equity. ADP is committed to equal employment opportunities regardless of any protected characteristic, including race, color, genetic information, creed, national origin, religion, sex, affectional or sexual orientation, gender identity or expression, lawful alien status, ancestry, age, marital status, or protected veteran status and will not discriminate against anyone on the basis of a disability. We support an inclusive workplace where associates excel based on personal merit, qualifications, experience, ability, and job performance.
Ethics at ADP: ADP has a long, proud history of conducting business with the highest ethical standards and full compliance with all applicable laws. We also expect our people to uphold our values with the highest level of integrity and behave in a manner that fosters an honest and respectful workplace. Click https://jobs.adp.com/life-at-adp/ to learn more about ADP's culture and our full set of values.