2+ years of work experience in cybersecurity focus areas such as SOC or Network Security
Bachelor's degree in Computer Science, Information Systems, Engineering, or related field
Experience with SOAR platforms (e.g., Swimlane, Phantom, XSOAR)
Experience with SIEMs (Splunk, XSIAM, QRadar) and knowledge of security process mapping/analysis/improvement concepts
Requirements:
Automate SOC security incident response processes to analyze and resolve alerts from existing security tools using a single stream management system
Develop and maintain custom applications for SOC workflows; author, test, and maintain automation scripts/workflows within the SOAR platform
Integrate the SOAR platform with other security tools and APIs to execute automated workflows and design/maintain reusable Python, JavaScript, and JSON code
Review, debug, and resolve technical issues across the SDLC; coordinate with system administrators and engineers to provision service accounts and grant required permissions; mentor and train SOC team members and contribute to SOPs, playbooks, and related process documents
Automate SOC Security Incident Response processes providing the ability to analyze and resolve alerts from existing security tools leveraging a single stream management system
Develop and maintain custom applications for SOC workflows
Assist with process development and process improvement for SOC to include creation/modification of SOPs, Playbooks, and work instructions
Integrate SOAR platform with other security tools and APIs to execute automated workflows
Author, test, and maintain automation scripts/workflows within SOAR platform
Design, implement, and maintain efficient and reusable Python, Javascript, and JSON code
Review, debug, and resolve technical issues throughout all stages of SDLC
Coordinate with system administrators and engineers to provision service accounts and/or grant required permissions
Actively mentor and train team members of the SOC processes, governance, and frameworks
Education, Experience, and Skill Requirements
2 plus years of work experience in one or more Cybersecurity focus areas such as SOC or Network Security
Bachelors degree in Computer Science, Information Systems, Engineering, or related field
Experience with SOAR platforms such as Swimlane, Phantom, XSOAR, etc…
Experience in security process mapping, security process analysis, security process improvement concepts, models, and best practices
Proficient in Python scripting
Working knowledge of REST APIs, JSON, HTML/CSS, Javascript, XML
Experience authoring SOC SOPs, playbooks, work instructions and/or other process documents
Experience with SIEMs, such as Splunk, XSIAM, QRadar, etc…
