Sr. Threat Intelligence Analyst

 Crestwood, KY

Req Number: 233509

ADP is hiring a Sr. Threat Intelligence Analyst - Hybrid 1-3 days onsite is preferred but Remote is a possibility.

ADP is hiring Unlock Your Career Potential: Global Security Organization at ADP.

Do you have a passion for going on the offensive to safeguard critical information?

As ADP's Global Security Organization (GSO), we know that our clients rely on us for human capital management solutions, but beyond that, they entrust us with one of their most valuable assets -- their employee data. We are honored by this trust and are laser focused on securing data at every step in the information lifecycle, ensuring integrity, confidentiality and compliance with industry and government regulations at all times. From the cloud to the data center and across every emerging device, you'll join a team of experts in the GSO who are always staying one step ahead in this ever-changing world of data by continually evolving our strategies and technologies to protect ADP and our clients.


In this role, the Senior Threat Intelligence Analyst will be responsible for the tactical and operational analysis of cyber, fraud, and physical threats that may impact ADP. The Cyber Threat Intelligence Analyst will demonstrate technical expertise and leadership in threat intelligence, brand protection, and data analysis.

You will work alongside intelligence analysts, threat hunters, and the security operations team to help improve and action Intelligence. Assist in producing a comprehensive operating picture and cyber security situational awareness. You will work with various intelligence collection and reporting tools and frameworks to produce reports and/or products. Collect, process, catalog, and document information as required based on defined intelligence requirements.

To thrive in this threat position, you'll need to be an expert in building and enhancing intelligence products and services. You'll also need experience working with structured and unstructured data and are great at maintaining situation awareness. You know how to work with the Security Operations team to create the most value and identify gaps in available intelligence information and engage with leadership on strategies to meet intelligence requirements through Intelligence collection processes.

We strive for every interaction to be driven by our CORE values: Insightful Expertise, Integrity is Everything, Service Excellence, Inspiring Innovation, Each Person Counts, Results-Driven, - Social Responsibility.

A little about ADP: We are a global leader in HR technology, offering the latest AI and machine learning-enhanced payroll, tax, HR, benefits, and much more. We believe our people make all the difference in cultivating an inclusive, down-to-earth culture that welcomes ideas, encourages innovation, and values belonging. A global Best Places to Work, DiversityInc® Top 50 Company, Best CEO and company for women, LGBTQ+, multicultural talent, and more, ADP has a deep commitment to diversity, equity, and inclusion. Learn more about ADP’s commitment on our YouTube channel:


  • Generate tailored and actionable products based on analyzed threat campaigns, external and internal events, and incidents relevant to and impacting ADP.
  • Collaborate with technical and threat intelligence analysts to provide indications and warnings and contribute to predictive analysis of malicious activity.
  • Develop analytical hypotheses, prove (or disprove) those hypotheses through research, and communicate that information to stakeholders verbally and in writing.
  • Review and analyze internal, open source, and dark web datasets to find threat information and use it to provide value to ADP.
  • Apply knowledge of current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks.
  • Provide accurate and priority-driven analysis on cyber activity/threats and present complex operational/technical topics to senior managers and stakeholders.
  • Establish and maintain excellent working relationships/partnerships with the cyber security and infrastructure support teams throughout the organization, as well as different business segments.
  • Ability to work in a fast-paced environment with minimal supervision
  • Produce intelligence products at the Operational and Tactical levels for audiences with diverse technological backgrounds.
  • Collect, analyze, investigate, store, and disseminate threat intelligence (actors, campaigns, TTPs, IOAs, IOCs)
  • Conduct detailed technical analysis supported by industry-accepted threat intelligence analytical frameworks, tools, and standards.
  • Create and evaluate trend/correlation analysis for scenario forecasting at both the tactical and operational levels.
  • Develop and refine cyber-threat intelligence collection and analysis processes.
  • Provide expertise and recommend relevant remediation and countermeasures during incident response efforts.
  • Provide security risk mitigation methods and compensating controls to help drive remediation efforts for the business.
  • Collect and analyze artifacts, including malicious executables, scripts, documents, and packet captures.
  • Generate presentations that illustrate research through visualizations, charts, graphs, infographics, and evidence capture for senior leadership.
  • Provide input for developing objectives, key results, and program metrics.
  • Exhibit strong critical thinking and problem-solving skills with sound judgment.
  • Maintain or develop professional contacts in the various communities to support operations.
  • Support the Critical Incident Response Center (CIRC)/SOC with intelligence collection, analysis, and/or dissemination as it relates to ongoing investigations


  • Excellent communications skills and report writing capability
  • Ability to work in a fast-paced environment with minimal supervision
  • 5+ years of cybersecurity, threat intelligence, or IT experience; 2+ years of experience in operational or tactical cyber threat analysis; experience can include one or more of the following cyber-security functions: Cyber Threat Intelligence, Threat Hunting, System Administration, Intrusion Detection/Prevention, Monitoring, Incident Response, Digital Forensics, Vulnerability Management
  • Holds certifications such as SANS FOR578, GIAC OSI, Security+, CISSP, GCTI, GREM, OSCP, or similar training and certification.
  • Prior experience as a technical cyber threat intelligence (or related) subject matter expert that has worked across organizational boundaries to analyze cyber threats to their organization’s infrastructure and services.

Preference will be given to candidates who have the following:

  • Knowledge of advanced cyber threats, threat vectors, and attacker methodology to include tools, tactics, and procedures and how they tie into the Cyber Kill Chain or ATT&CK framework, Diamond Model.
  • Experience in malware detection and analysis using static and dynamic malware analysis methods.
  • Knowledge of cloud services and their attack surface.
  • Knowledge of how malicious code operates and how technical vulnerabilities are exploited.
  • Experience with premium threat intelligence tooling and/or open-source intelligence techniques.
  • Experienced in developing network and host-based signatures to identify specific malware.
  • Experience with disseminating information in accordance with TLP classification and handling protocols to the sector through the appropriate mechanisms.
  • Experience with various link analysis and intelligence software applications.
  • Organizational and self-directing skills -- ability to initiate, coordinate and prioritize responsibilities and follow through on tasks to completion
  • Programming / Scripting experience to automate tasks is a plus (python, Perl, .net, etc.)
  • Understanding the following foreign languages is a plus (Russian, Mandarin, Farsi, Korean, Arabic)
  • Experience with developing tools to enhance cyber-threat intelligence capabilities. Banking or Financial industry experience

To Succeed at this Role:

Education / Certifications:

  • You will have a bachelor's degree in Computer Science, Information / Cyber Security, Computer Systems Engineering, Computer Information Systems or equivalent education and experience required.


  • Team collaboration.Courage comes from how associates are willing to have difficult conversations, speak up, be an owner, and challenge one another’s ideas to net out the best solution.
  • Deliver at epic scale.We deliver real user outcomes using strong judgment and good instincts. We’re obsessed with the art of achieving simplicity with a focus on client happiness and productivity.
  • Be surrounded by curious learners.We align ourselves with other smart people in an environment where we grow and elevate one another to the next level. We encourage our associates to listen, stay agile, and learn from mistakes.
  • Act like an owner & doer.Mission-driven and committed to navigating change, you will be encouraged to take on any challenge and solve complex problems. No tasks are beneath or too great for us. We are hands-on and willing to master our craft.
  • Give back to others. Always do the right thing for our clients and our community and humbly give back to the community where we live and work. Support our associates in times of need through ADP’s Philanthropic Foundation.
  • Join a company committed to equality and equity. Our goal is to impact lasting change through our actions.

Apply today!>

Find out why people come to ADP and why they stay: (ADA version: )

The US base salary range targeted for this job is listed in the compensation section below. Base salary offers for this position may

vary based on factors such as location, skills, and relevant experience. Some positions may include additional compensation in the

form of bonus, equity, or commissions.

If you are a full-time salaried or hourly worker, we offer the following benefits: Medical, Dental, Vision, Life Insurance, Matched

401(k), Student Loan Repayment Program, Wellness Program, Short-and Long-Term Disability, Charitable Contribution Match,

Holidays, Personal Days & Vacation, Paid Volunteer Time Off, and more

Compensation range for this role is $74,000 - $198,360 / Year

Explore our COVID-19 page to understand how ADP is approaching safety, travel, the hiring interview process, and more.

Diversity, Equity, Inclusion & Equal Employment Opportunity at ADP: ADP affirms that inequality is detrimental to our associates, our clients, and the communities we serve. Our goal is to impact lasting change through our actions. Together, we unite for equality and equity. ADP is committed to equal employment opportunities regardless of any protected characteristic, including race, color, genetic information, creed, national origin, religion, sex, affectional or sexual orientation, gender identity or expression, lawful alien status, ancestry, age, marital status, or protected veteran status and will not discriminate against anyone on the basis of a disability. We support an inclusive workplace where associates excel based on personal merit, qualifications, experience, ability, and job performance.

Ethics at ADP: ADP has a long, proud history of conducting business with the highest ethical standards and full compliance with all applicable laws. We also expect our people to uphold our values with the highest level of integrity and behave in a manner that fosters an honest and respectful workplace. Click to learn more about ADP's culture and our full set of values.