Location: Plano TX
Hybrid - 3/days onsite in office and 2 days remote
Length: 3 years****************************
Start/On-boarding Process:
Once offer is made, they will do a background check that includes:
- 10 years background
- Drug test
- Finger Printing
* Timeline is 2 weeks from offer to start based on background process
KEY REQUIREMENTS:
* 5+ years of overall Cyber experience
* 2+ years of SOAR experience, building complex playbooks from scratch.
* Scripting experience with (Python or Powershell)
* SOC Operations background
* Experience with Regular Expressions (RegEX) - used to extract words/letters from sentences.
* Need to have SOAR tool experience (They use Tines, but are open to another SOAR tool)
* Strong communication as they will be interacting with stakeholders.
Responsibilities
* To provide automation for the Cyber Security Operations Center using (Security Orchestration, Automation, and Response) SOAR technology.
* Understands client business functions and technology needs. Understands client's tools, technologies, and applications/databases, including those that interface with business area and systems.
* Develop and optimize SOAR playbooks.
* Automate incident response processes and streamline security operations for faster threat resolution.
* Integrate SOAR with various security tools and services using APIs for seamless automation workflows.
* Monitor and troubleshoot SOAR playbooks to ensure optimal performance and incident response.
* Document SOAR processes and provide training to team members on new workflows and playbooks.
* Research new automation techniques and optimize existing workflows to improve efficiency.
* Learns and complies with Information Technology and Information Security policies and procedures.