**********Looking for someone with extensive engineering background, not Analyst*******
Description:
Client is looking for a skilled and versatile Security Engineer to drive the advancement and growth of our detection and automation initiatives. Reporting to the Senior Manager of Security Engineering and Operations, this role will collaborate with cross-functional teams and external partners to mitigate risks and implement security measures that safeguard sensitive data and systems against infiltration and cyber-attacks. The position will also lead our incident response efforts and the development of threat detection platforms.
Must Have Skills to Qualify:
Building automation workflows from scratch
Owning SOAR playbook architecture
Hands-on Python scripting for integrations
Deploying detection logic across hybrid environments
● Familiarity with a broad range of security technologies: SIEM, CASB, SOAR, DLP, and EDR.
● Technical proficiency with one or more of the major cloud computing environments.
● Several years of experience with the Python programming language.
● Excellent software design, problem-solving, and debugging skills.
● Energetic, passionate about security, and professionally curious about the cyber security threat landscape
Responsibilities:
● Lead the development, research, and creation of automations within our SOAR platform.
● Design and develop automation playbooks using both out-of-the-box and custom integrations and functions.
● Create custom integrations and automation scripts using languages like Python or PowerShell.
● Integrate existing technologies with the XSOAR platform.
● Participate in architecture design and analysis related to security automation.
● Troubleshoot and resolve issues related to automation processes or tools.
● Collaborate with teams such as network engineering and downstream applications to ensure seamless integration of automation solutions.
● Catalogue and review identified security automation use cases with stakeholders.
● Lead automation use case/playbook design sessions.
● Develop and maintain documentation for automation processes and procedures.
Your team will:
● Execute Client’s security strategy and roadmap.
● Refine security response by implementing orchestration and automation.
● Innovate new methods and processes that will improve Client’s security posture.