Information Security Consultant I - NCR Corporation : Job Details

Information Security Consultant II

Apply locations ATLANTA, GA, USA time type Full time posted on Posted 2 Days Ago job requisition id R0150462

About NCR VOYIX

NCR VOYIX Corporation (NYSE: VYX) is a leading global provider of digital commerce solutions for the retail, restaurant, and banking industries. NCR VOYIX is headquartered in Atlanta, Georgia, with approximately 16,000 employees in 35 countries across the globe. For nearly 140 years, we have been the global leader in consumer transaction technologies, turning everyday consumer interactions into meaningful moments.

This role is part of NCR Voyix's Global Information Security team. This team is responsible for supporting and progressing NCR Voyix's Corporate Information Security program. The primary goal of the program is to protect the confidentiality, integrity, and availability of information resources.

We are seeking a highly skilled and experienced Information Security Consultant who will be responsible for day-to-day activities, which include responding to both routine and high severity incidents and leading our Forensics E-Discovery team. This is a position where the ideal candidate will have a strong background in network incident response, digital forensics, e-discovery processes, and litigation support.

Key Responsibilities

• Collaborate with internal and customer teams to investigate and contain incidents. Conduct host forensics, network forensics, log analysis, and malware triage in support of incident response investigations.
• Recognize and codify attacker Tools, Tactics, and Procedures (TTPs) and Indicators of Compromise (IOCs). Build scripts, tools, or methodologies to enhance incident investigation processes.
• Monitor and process response for security events on a 24x7 basis.
• Analyze attack vectors and methods to develop custom Splunk ES SIEM signatures or detections.
• Provide and implement recommendations to improve Splunk ES detections.
• Lead the SOC's incident response team threat hunting and incident response activities.
• Conduct Postmortem exercises post incidents with a focus to identify deficiencies requiring additional attention.
• Analyze and respond to security threats from various security data sources.
• Oversee the collection, preservation, and analysis of electronic data and metadata in response to litigation, regulatory inquiries, and internal investigations.
• Collaborate and communicate with the Law Department and Global Security teams to understand case requirements and provide guidance on e-discovery and digital forensics matters.
• Conduct data collection from digital devices, including computers, mobile devices, and cloud-based systems.
• Develop and implement e-discovery strategies and workflows to ensure efficient processes.
• Leverage knowledge in multiple security disciplines to offer global solutions for a complex heterogeneous environment.
• Provide or facilitate the forensics analysis of security events.
• Stay current with industry trends, tools, and best practices in digital forensics and e-discovery.
• Support 24/7 operations.
• Work non-standard hours including nights, weekends, and holidays.
• Perform other duties as assigned.

Skills and Qualifications

• Strong knowledge of network, backend systems, operating systems, applications, and web services as it relates to security and services.
• 5+ Years as a Senior incident responder/leader of incident response, digital forensics, and e-discovery.
• Experience configuring custom Splunk searches and applications required.
• Experience with analyzing attack vectors and methods to develop Splunk ES SIEM signatures or detections.
• Ability to apply analytical expertise and critical thinking to security incidents.
• Ability to collaborate within a geographically distributed team of Incident Response Analysts.
• Demonstrated team or functional leadership experience.
• Current Information Security related certification preferred.
• Knowledge of relevant information security and incident response frameworks.

Licenses/Certifications

• CISSP Certified Information Systems Security Professional
• Certified Ethical Hacker (CEH)
• CompTIA Network+ Certification
• CompTIA Security+ Certification

Offers of employment are conditional upon passage of screening criteria applicable to the job.

EEO Statement

NCR Voyix's commitment to diversity and equal employment opportunity. All qualified applicants will receive consideration for employment without regard to any characteristic protected by law.