ADP is hiring a Lead Security Engineer.
Do you have a passion for going on the offensive to safeguard critical information?
Well, this may be the role for you.
Ready to make your mark?
In this role, the Lead Security Engineer will be responsible for the design, development, enhancement, and maintenance of the Threat Intelligence Program's Platform Operations, Automation, and Integrations.
The Lead Engineer will demonstrate the ability to perform in a fast-paced team, technical expertise, and leadership in threat intelligence, application development, brand protection, and data analysis.
You will work alongside infrastructure security engineers, threat intelligence analysts, threat hunters, and the security operations team to help improve our current automation processes and future integrations.
You will work with various intelligence collection, reporting tools, and frameworks to automate the processes, develop playbooks, and/or integrate processes with other platforms.
You will review documentation, develop plans, catalog and document processes, communicate with stakeholders and application support teams, follow up on requests, and improve processes.
To thrive in this position, you'll need to be an expert in application development, API integration, automation processes, understand the Threat Intelligence Lifecycle, and know how threat intelligence products and services work.
You'll also need experience working with structured and unstructured data and be great at maintaining situation awareness.
You know how to work with the Security Operations team to create the most value and identify gaps in available intelligence information and engage with leadership on strategies to meet intelligence requirements through Intelligence collection processes.
RESPONSIBILITIES:Develop Indicator Enhancement/Enrichment Playbook for the Threat Intelligence Platform (TIP).Collect and ingest data from various sources to the TIP.Develop systems integration between multiple Threat Intelligence Source APIs and the TIP to ingest indicators of compromise.Develop threat intelligence data dashboards, based on various tagging, and indicator types along with their threat severity and confidence levels.Develop and maintain API connections with various security stack solutions.Understand and maintain API that enables the system integration between Apache Nifi and the indicators database (mirror of the Threat Intelligence Platform Database).
This API handles requests to build IOC feeds based on indicator types, indicator attributes or tags, and indicators severity, and handles the enrichment of indicators.Develop and maintain threat intelligence system to gather IOC data from multiple external threat intelligence feeds.Collect, review, and analyze internal, open source, and dark web datasets to integrate with TIP and other security monitoring solutions.
#J-18808-Ljbffr