Job Description :
Job Title: Security Orchestration Engineer
Location: Pleasanton CA/Remote
Duration: Long term contract
Job Description:
A bachelor''s degree in a related field and approximately 5-8 years of related work experience;
3+ years of experience with scripting in one or more of the following scripting languages javascript, JQuery, Bootsrap,
3+ years of experience using SOC workflow experience (ex. SOAR)
3+ years of experience using SOAP, RESTFul, AngularJS
Proven background in creating automation tools, automating web-based services
Excellent analytical and problem-solving abilities
Cyber Orchestration Engineers are needed to review procedures relating to current threat management and response processes as well as design automated actions to accelerate the triage, validation, containment, eradication and remediation of security incidents.
You must be familiar with leading security tools and industry standard scripting languages.
Automation and Orchestration engineers will create, maintain and manage a library of automated playbooks for common information security threats and customize these plans for client specific environments.
Perform regular updates of existing Playbooks based on requirements provided by operations teams for changes in the Threat Landscape or a client’s security controls
Drive continuous improvement of existing playbooks to address new threats and tactics employed by attackers
Manage an inventory of integrations that enable broader playbook creation
Produce new playbooks as threats change and new security tools and controls emerge in the market place based in requirements from operations teams
Perform regular reporting on the usage of playbooks and the effectiveness of a playbook to conclusion
Develop logic that bridges connectors, tasks and human input to accelerate the response to escalated security incidents
Develop connectors that collect enrich and leverage data from third party and proprietary services
Participate in client meetings to further optimize their specific operational plan based on our best practices and operational learnings