Roles and Responsibilities :
Senior SOAR Automation Engineer
Role and Responsibilities
- The ideal candidate will have experience with both Palo Alto XSOAR and / or Splunk SOAR.
- Palo Alto XSOAR and / or Splunk SOAR platform architecture, implementation, and troubleshooting.
- Participate in the intake, analysis, and finalization of cybersecurity use cases.
- Analyze, build, test, deploy, maintain, and document new SOAR playbooks to extend existing automation capabilities.
- Write, test, and maintain automation scripts / workflows within SOAR platform.
- Translate conceptual SOC requirements into technical data and integration requirements for the SOAR platform.
- Develop creative new approaches to accelerate threat detection, responses and remediation of security incidents.
- Ability to autonomously prioritize and successfully deliver across a portfolio of projects.
Qualifications and Education Requirements : High School Diploma or Equivalent
Required
- years of security engineering experience in the Information Security industry OR as a technical expert for an internal Information Security program.
- Scripting and development skills (BASH, Perl, Python or Java) with strong knowledge of regular expressions
- Expertise developing SOC and security-focused content and automation.
- Experience authoring security runbooks, policy, and best practice documentation.
- Experience developing secure and efficient SOAR integrations.
- Proficiency in developing data ingestion. aggregation, and transformation strategies. Must have a valid driver's license and current state required minimum vehicle insurance coverage to drive onto Client and Company property.
Preferred Skills :
Splunk Phantom Certified Admin and / or Palo Alto Networks Certified Security Automation Engineer a
- Experience with other Information Security solutions including DLP, NAC, SASE, NGFW, EDR, XDR, SIEM
- Prefer local to Southern California.
- Out of US candidates will NOT be considered.
M-F - Remote Candidate should reside in CA, preferably So Cal but just has to be in CA
30+ days ago