×
Register Here to Apply for Jobs or Post Jobs. X
More jobs:

Sr. Security Analyst- Eng

Job in Atlanta, Fulton County, Georgia, 30301, USA
Listing for: UKG, Inc.
Full Time position
Listed on 2026-07-09
Job specializations:
  • IT/Tech
    Cybersecurity
Job Description & How to Apply Below
Position: Sr. Staff Security Analyst- Eng

Senior Staff Soc Analyst

At UKG, the work you do matters. The code you ship, the decisions you make, and the care you show a customer all add up to real impact. Today, tens of millions of workers start and end their days with our workforce operating platform. Helping people get paid, grow in their careers, and shape the future of their industries. That's what we do.

We never stop learning. We never stop challenging the norm. We push for better, and we celebrate the wins along the way. Here, you'll get flexibility that's real, benefits you can count on, and a team that succeeds together. Because at UKG, your work matters—and so do you.

Responsibilities
  • Provide hands-on digital forensics and incident response expertise across endpoint disk, memory, network, cloud, Windows, Linux, and runtime environments
  • Lead major cyber incident command activities, including coordinating technical response, guiding investigative work streams, tracking actions, briefing stakeholders, and driving incidents through containment and recovery
  • Perform hands-on keyboard threat hunting with and without GenAI assistance across SIEM, EDR, cloud, identity, network, and forensic data sources
  • Support and lead complex incident response investigations as a technical contributor and collaborator across Security Operations Center, Threat Intelligence, Detection Engineering, Cloud Security, Infrastructure, Legal, Privacy, and business stakeholder teams
  • Guide, mentor, and train analysts during active incidents, post-incident reviews, tabletop exercises, and proactive hunting engagements
  • Create and present incident strategies, investigation plans, findings, timelines, and technical summaries to audiences of technical and executive leadership levels when asked
  • Develop and maintain training materials, playbooks, procedures, and practical exercises for incident command, digital forensics, incident response, and threat hunting capabilities
  • Use mid-level scripting and automation to accelerate investigations, enrich forensic analysis, standardize response actions, and improve repeatability across the SOC
  • Support continuous improvement of incident handling processes, forensic collection methods, threat hunting tradecraft, and analyst readiness
  • Partner with Detection Engineering and Threat Intelligence teams to convert investigative findings into durable detections, response logic, hunting hypotheses, and operational improvements
  • Support reverse engineering or malware analysis activities when needed, including triage of suspicious binaries, scripts, payloads, and attacker tooling where skillsets apply
Qualifications
  • The ability to lead complex security incidents, guide technical teams, influence response direction, and support building strategic and technical SOC initiatives
  • 5+ years of direct hands-on digital forensics and incident response experience supporting major enterprise environments
  • Advanced knowledge of forensic artifact areas across network, cloud, Windows, Linux, endpoint, identity, and runtime environments
  • Demonstrated experience leading or supporting major cyber incident command, including technical coordination, action tracking, decision support, stakeholder updates, and post-incident improvement activities
  • Deep hands-on experience performing endpoint disk, memory, cloud, and host-based forensic analysis in active incident response scenarios
  • Demonstrated hands-on threat hunting experience using SIEM, EDR, cloud telemetry, identity logs, network data, and forensic artifacts
  • Experience applying GenAI-assisted workflows to investigation, summarization, hunt development, scripting, or analyst enablement, while maintaining strong technical validation and judgment
  • Ability to lead, mentor, train, and influence technical analysts during investigations, hunting activities, and operational readiness efforts
  • Demonstratable hands-on skills in a scripting language such as Python, Power Shell, Bash, or similar for use in investigation, automation, parsing, enrichment, and response workflows
  • Strong understanding of SOC operations, incident response lifecycle, forensic collection standards, evidence handling, investigation documentation, and executive-ready incident reporting
  • Ability to develop practical training content for incident command, digital forensics, incident response, and threat hunting programs
  • Experience with one or more major public cloud service provider environment required
  • Reverse engineering and malware analysis experience preferred, including static or dynamic triage of malware, scripts, payloads, or attacker tooling
  • Hands-on keyboard investigative analysis experience with one or more major SIEM, EDR, SOAR, cloud security, case management, and forensic tooling platforms

UKG is the Workforce Operating Platform that puts workforce understanding to work. With the world's largest collection of workforce insights, and people-first AI, our ability to reveal unseen ways to build trust, amplify productivity, and empower talent, is unmatched. It's this expertise that…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary