Information Security Consultant I

NCR Atleos•Frisco, TX

9d•Hybrid

About The Position

This role is responsible for analyzing activities relating to monitoring and responding to security events. This role receives, researches, triages and documents all security events and alerts as they are received. This individual supports multiple security-related platforms and technologies, interfacing with others within the IT organization, as well as other internal business units and external customers/partners. Events will be generated from endpoints, networks, security information and event management (SIEM) systems, threat intelligence platforms, employees, third-parties, and other sources. This role also receives information sharing and analysis center (ISAC) information and is expected to hunt for potential compromise across the infrastructure. Additionally, personnel in this role serve across all areas of threat intelligence and detection engineering competencies to help inform and defend the business, and protect brand reputation. The incumbent monitors application, host and network threats, including external threat actors and rogue insiders by reviewing and developing complex detections across the security product landscape. As a trusted member of the cybersecurity team and industry community, the candidate works closely with internal technical teams, business units and external entities aligned with the business, including private intelligence-sharing groups, law enforcement, government agencies and public affiliation peers.

Requirements

Bachelor’s Degree in a technical discipline or equivalent work experience.
4-8 years of experience in IT security or a related field.
Candidates for this role must display an in-depth understanding of new trends and technologies related to IT security and compliance and contribute to the company IT security strategy and roadmap.
Familiarity with tools and technologies used for enterprise security, including Splunk Enterprise Security, Crowdstrike, Trellix NX, Trellix Helix, and Qualys. Splunk and Crowdstrike are a must.
Knowledge of incident response and security operations.
Ability to analyze network and endpoint architecture.
Understanding of administrative, technical, and physical controls.
Strong communication skills to educate stakeholders on security matters.
Self-motivated and capable of picking up and learning new technologies.

Responsibilities

Analyze security events: Investigate and assess security incidents promptly.
Threat detection: Hunt for potential compromises across the infrastructure.
Threat intelligence: Stay informed about emerging threats and trends.
Complex detections: Develop sophisticated detection rules across security products.
Collaboration: Work closely with technical teams, business units, and external entities.
Brand protection: Defend the business reputation by ensuring robust security practices.