Advance Auto Parts Hiring for Lead Security Engineer at Hyderabad, Telangana Full Time

The Office of Information Security is looking for people who deeply understand information security and are dissatisfied with state of the art. We are building a team of people who are pragmatic and visionary at the same time: who can take strong executive support and a strategic commitment to transformation and run with that to build something better and smarter. We are looking for those agents of change, people willing and able to leave a mark not just on a Fortune500 company, but on an entire industry.

The Sr. Information Security Engineer is responsible for managing the Cyber Threat Intelligence needs of the organization and serves on the front line of the Information Security Program at AAP. As a part of the Cyber Threat Intelligence team, you will be a subject matter technical expert and leader for cyber threat management, Threat Intelligence enrichments, security incident detection, containment, response, and Insider Threat/UBA monitoring.

The Sr. Threat Intelligence Analyst will be able to enhance knowledge of Threat Intel operations and collaborate with internal AAP team members and platform teams to apply industry best practices to AAP applications and architecture. The role will be analyzing organization infrastructure from a security Intelligence perspective; and identify requirements and solutions to address them.

A successful candidate will have experience working through ambiguity, helping to define security requirements with managers and developers, and incorporating feedback, and identifying potential problems before they become real problems.

Responsibilities include:
Formulate Threat Intel program for the organization and drive it end to end.

Connect with different stakeholders to identify PIRs and create achievable project charters to enhance the Intel maturity score each quarter.

In-house development, maintenance, operations of tools, managing integrations & analytics use cases on SIEM platforms for Cyber Threat Intelligence (CTI)

Compile cyber threat data gathered through independent research and analysis along with Security Operations Center activity, and look at emerging technology, techniques and adversarial capabilities and tactics.

Develop cyber threat analysis and mitigation courses of action, and provide actionable intelligence used in organizational IT Asset protection, strategic cyber threat trending and situational awareness of customer leadership.

Mentoring fellow team members on CTI lifecycle.

Manage and maintain business relationships and communication with vendor partners.

Participate as a member of the Cybersecurity Incident Response Team (CIRT). Accurately and rapidly respond to security incidents as assigned by the Incident Handler and provide Intelligence enrichments.

Perform adhoc analysis and investigation for latest Threats, collect IOCs and IOAs in a timely fashion.

Ensure compliances to Cyber Kill chain and MITRE ATT&CK Frameworks.

Publish Strategic, Technical and Tactical Threat Intelligence reports.

Enhancing security programs and tools while Delivering required security metrics.

We are seeking the following qualifications:
Bachelor’s degree in Computer Science /Engineering or equivalent experience

7+ years’ experience in Information security with proven expertise in Security operations and Threat Intelligence. Retail Industry experience preferred.

Ability to maintain efficiency and positive attitude in the face of challenging and competing deadlines

Ability to operate in an Agile based environment where Daily Standups, Sprint Planning, Sprint Review, backlog grooming, and Sprint Retrospective are held

Strong communication and collaboration skills and experience interacting at all levels throughout IT/business teams and working within large, matrixed organizations

Highly organized, great attention to detail and ‘hands on’ work style

Able to work independently with strong critical thinking, decision making, troubleshooting and problem-solving skills

Strong work ethic and internal drive for results. Strong planning, execution and multitasking skills and demonstrated ability to nimbly reprioritize and meet deadlines reliably.

Solid familiarity of prevalent security threats and how they apply to the business

Share IOC’s with internal and external teams for validation and collaboration.

On a near real-time basis, analyze cyber threat Indications & Warning and fuse unclassified/open source cyber threat information correlating internal activity to external indicators across numerous boundaries. The correlation provides insight into every stage of a potential intruder’s cyber kill chain as well as other activities in the wild.

Advise and consult with internal security engineers, and outside AAP team members on risk assessment, threat modeling, and vulnerability management.

Maintain up-to-date knowledge of the IT security industry, including awareness of emerging technology, techniques and adversarial capabilities and tactics, and new attacks and threat vectors.

Strong experience analyzing and synthesizing actionable threat intelligence via open source tools

Strong experience in collecting intelligence from the surface web, deep web & darknet

Preferred Certifications: CEH, CTIA.