Information Security Operations Analyst

About NCR VOYIX

NCR Voyix Corporation (NYSE: VYX) is a global platform-powered leader in unified commerce for shopping and dining. Combining a flexible, intelligent platform with end-to-end payments capabilities and services developed through its deep industry experience, NCR Voyix empowers retailers and restaurants to accelerate new possibilities for their operations, experiences and business outcomes. NCR Voyix is headquartered in Atlanta, Georgia, and serves customers in more than 35 countries worldwide.

Title:    Threat Intel & Cyber Defense Analyst

Location:  Atlanta, GA

About NCR Corporation

NCR Corporation (NYSE: NCR) is a global technology company leading how the world connects, interacts and transacts with business. NCR’s assisted- and self-service solutions and comprehensive support services address the needs of retail, financial, travel, healthcare, hospitality, entertainment, gaming and public sector organizations in more than 100 countries. NCR (www.ncr.com) is headquartered in Atlanta, Georgia.

 Threat Intel & Cyber Defense Analyst

This role is part of NCR’s Global Information Security team. This team is responsible for developing and implementing NCR’s corporate information security program. The primary goal of the program is to protect the confidentiality, integrity, and availability of information resources. Key information security functions and activities include architecture and design for NCR information security controls, developing and enforcing policies and standards, security awareness training, risk management, assessment, and testing, monitoring and metrics, incident management, and threat and vulnerability management.

The Cyber Defense Analyst shall be responsible for actively hunting for Cyber threats and building automation to improve our capabilities to detect such threats at scale. Working in a collaborative team environment, the Cyber Defense Analyst will investigate information security incidents and escalate when required. The Cyber Defense Analyst shall work in a collaborative manner with other incident responders, key incident management team members, management, and other stakeholders to ensure security incidents are contained, eradicated, remediated and after-action review is held according to corporate policy.  The Cyber Defense Analyst is expected to contribute to weekly status calls, work on the on-call rotation which includes working off hours/weekends and respond to ad-hoc requests as part of this position. The Cyber Defense Analyst will work with stakeholders and team members to assist with improving incident response processes that are aligned with the mission of the office of the CISO.  The Threat Intel analyst shall work in a collaborative manner with the incident response team, key incident management team members, management, and other stakeholders to ensure security incidents have pertinent information to drive investigations. The Threat Intel analyst will also be responsible for building detections based on industry and technology related threats. This position reports to the Incident Response Manager, Cyber Defense Center and is based in the Global Headquarters of NCR in Midtown Atlanta.

Key Responsibilities

• Effectively apply corporate incident handling procedures by leading information security incident meetings and documenting related activities
• Triage, respond to and escalate security incidents
• Provide or facilitate the forensics analysis of security events
• Coordinate incident response activities across multiple independently managed environments and security teams
• Utilize multiple security/threat intelligence tools and resources to understand threats
• Analyze and respond to minor and major incidents, reported SPAM and Phishing e-mails
• Provide leadership in process improvement and automation of incident response activities
• Support 24/7 operations
• Finding new threats
• Provide comprehensive threat intelligence
• Patch and triage vulnerabilities

Skills and Qualifications

• Strong knowledge of network, backend systems, operating systems, applications and web services in a manner that allows for the interaction of all as it relates to security and services. 
• 2+ Years as an incident responder or leader of incident response
• Ability to apply analytical expertise and critical thinking to security incidents
• Ability to assimilate, understand and utilize various security technologies
• Ability to collaborate within a geographically distributed team of Incident Response Analysts
• Demonstrated team or functional leadership experience
• Experience processing and analyzing intelligence in support of management decision making
• Knowledge of relevant information security and incident response frameworks such as ISO 27001, NIST SP 800-61, NIST Cyber Security Framework, MITRE ATT&CK Framework.
• Strong communication skills and ability to work in a collaborative atmosphere
• Strong attention to detail
• Ability to deal with ambiguity and translate high level objectives into detailed tasks
• Proven decision-making and influencing skills
• Ability to prioritize work with multiple, simultaneous work assignments
• Ability and willingness to learn new tools and processes.
• Bachelor's degree preferred
• Experience documenting business processes or technical procedures preferred.
• 3+ years working in Information Security preferred
• Experience with event escalation, reporting and investigation preferred
• Industry certifications related to security and incident handling (ServiceNow Admin, Certified Incident Responder, Recorded Future certified analyst, Insight VM certified administrator Rapid7) preferred

Offers of employment are conditional upon passage of screening criteria applicable to the job

EEO Statement

Integrated into our shared values is NCR Voyix’s commitment to equal employment opportunity.  All qualified applicants will receive consideration for employment without regard to sex, age, race, color, creed, religion, national origin, disability, sexual orientation, gender identity, veteran status, military service, genetic information, or any other characteristic or conduct protected by law.  NCR Voyix is committed to being a globally inclusive company where all people are treated fairly, recognized for their individuality, promoted based on performance and encouraged to strive to reach their full potential.  We believe in understanding and respecting differences among all people.  Every individual at NCR Voyix has an ongoing responsibility to respect and support a globally diverse environment.

Statement to Third Party Agencies
To ALL recruitment agencies: NCR Voyix only accepts resumes from agencies on the preferred supplier list. Please do not forward resumes to our applicant tracking system, NCR Voyix employees, or any NCR Voyix facility. NCR Voyix is not responsible for any fees or charges associated with unsolicited resumes

“When applying for a job, please make sure to only open emails that you will receive during your application process that come from a @ncrvoyix.com email domain.”