Security Automation Engineer

Duties and Responsibilities:

• Serve as the Subject Matter Expert of the SOAR solution and security automation efforts.
• SOAR configuration and management.
• Creation of advanced security playbooks and tuning of existing playbooks.
• Automate Incident Response functions to optimize and supplement SOC.
• Integrate third party threat feeds and other applications.
• Identify inefficient processes that can be automated.
• Creation of technical documentation detailing playbooks, workflows, queries and more.
• Research latest threats and attack tactics; implement defensive measures and response procedures to reduce potential impact.
• Provide solutions to improve secure configuration and hardening of endpoint systems, perimeter networks, and cloud technologies.
• Perform technical analysis of malware and network/web application attacks and other suspicious activities.
• Use the Incident Response Lifecycle to guide your work tasks and implement processes and procedures.

Want more jobs like this?

Get jobs in Boca Raton, FL delivered to your inbox every week.

Get Jobs

Send me The Muse newsletters for the best in career advice and job search tips.

By signing up, you agree to our Terms of Service & Privacy Policy.

• Certified Information Systems Security Professional (CISSP) or Equivalent preferred.
• SANS and/or Advanced GIAC certifications desired.
• Bachelor's degree in computer science or a related technology field or equivalent in comparable work experience within the network or security field preferred.
• Extensive experience maintaining, optimizing, and troubleshooting SOAR solutions.
• Experience with scripting and APIs strongly desired.
• Extensive experience with Palo Alto Networks solutions strongly desired.
• Experience with information security incident response and risk mitigation.
• Experience in enterprise environments.
• Familiarity with compliance frameworks such as SOC2, SOX and PCI a plus.

• Highly motivated and able to work independently and as part of a fast-paced and high performing team.
• Open-minded, adaptable, and passionate about learning.
• Strong organization and planning skills.
• Strong analytical skills.
• Ability to solve unique problems with outside-the-box solutions.
• Broad knowledge of Enterprise Infrastructure concepts and best practices as they relate to Cyber Security and incident response.
• Python, JavaScript or Powershell.
• Solid understanding of packets, network traffic, and the OSI model.
• Knowledge of penetration testing methods and tools.
• Excellent communication and writing skills.