Security Automation Engineer

ADT Security Services - Boca Raton, FL

posted 11 days ago

Full-time
Boca Raton, FL
Administrative and Support Services

About the position

The Security Automation Engineer will serve as the Subject Matter Expert for the SOAR solution and security automation initiatives. This role focuses on optimizing incident response functions, integrating third-party threat feeds, and creating advanced security playbooks to enhance the security operations center (SOC). The engineer will also be responsible for researching threats, implementing defensive measures, and providing solutions for secure configurations across various technologies.

Responsibilities

  • Serve as the Subject Matter Expert of the SOAR solution and security automation efforts.
  • SOAR configuration and management.
  • Creation of advanced security playbooks and tuning of existing playbooks.
  • Automate Incident Response functions to optimize and supplement SOC.
  • Integrate third party threat feeds and other applications.
  • Identify inefficient processes that can be automated.
  • Creation of technical documentation detailing playbooks, workflows, queries and more.
  • Research latest threats and attack tactics; implement defensive measures and response procedures to reduce potential impact.
  • Provide solutions to improve secure configuration and hardening of endpoint systems, perimeter networks, and cloud technologies.
  • Perform technical analysis of malware and network/web application attacks and other suspicious activities.
  • Use the Incident Response Lifecycle to guide work tasks and implement processes and procedures.

Requirements

  • Certified Information Systems Security Professional (CISSP) or Equivalent preferred.
  • SANS and/or Advanced GIAC certifications desired.
  • Bachelor's degree in computer science or a related technology field or equivalent in comparable work experience within the network or security field preferred.
  • Extensive experience maintaining, optimizing, and troubleshooting SOAR solutions.
  • Experience with scripting and APIs strongly desired.
  • Extensive experience with Palo Alto Networks solutions strongly desired.
  • Experience with information security incident response and risk mitigation.
  • Experience in enterprise environments.
  • Familiarity with compliance frameworks such as SOC2, SOX and PCI a plus.

Nice-to-haves

  • Strong organization and planning skills.
  • Strong analytical skills.
  • Ability to solve unique problems with outside-the-box solutions.
  • Broad knowledge of Enterprise Infrastructure concepts and best practices as they relate to Cyber Security and incident response.
  • Knowledge of penetration testing methods and tools.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service