Job Description :
Responsibilities
Build and operate a scalable and sustainable security automation infrastructure
Automate and integrate workflows between and within the SIEM, big data platforms, threat & vulnerability intelligence ingestion and information security incident response system
Develop, implement and automate strategies, creating and tuning tools and rules for detecting and addressing malicious activity
Strategically define and implement additional detective capabilities or data sources to improve telemetry
Regularly triage cyber security incidents post-enrichment and respond to events as part of the incident response process
Constantly innovate at the pace of the adversary using latest techniques
Requirements
3+ years'' experience in automating and orchestrating tasks within an enterprise
5+ years'' experience within Information Technology with a specialization on Security related controls
Experience writing tools to automate tasks and integrate systems in Python''
Experience supporting and maintaining Linux operating systems
Experience in programming utilizing the REST API is preferred
Understanding of software development standard methodologies to identify requirements and guide business partners in playbook development
Prior experience using automation tools required (Phantom experience a plus)
Experience with other SIEM systems and enterprise logging solutions (Splunk
Strong verbal & written communication skills and demonstrated ability to collaborate across teams and organizations.