ADT Inc.
Security Automation Engineer
ADT Inc., San Francisco, CA
Job Description
Duties and Responsibilities:
Education and Experience:
Knowledge and Skills:
ADT is an Equal Employment Opportunity (EEO) Employer. We celebrate diversity and are committed to building an inclusive team that represents a variety of backgrounds, perspectives, and skills. ADT strives to ensure every employee and applicant feels valued. Visit us at jobs.adt.com/diversity to learn more.
Duties and Responsibilities:
- Serve as the Subject Matter Expert of the SOAR solution and security automation efforts.
- SOAR configuration and management.
- Creation of advanced security playbooks and tuning of existing playbooks.
- Automate Incident Response functions to optimize and supplement SOC.
- Integrate third party threat feeds and other applications.
- Identify inefficient processes that can be automated.
- Creation of technical documentation detailing playbooks, workflows, queries and more.
- Research latest threats and attack tactics; implement defensive measures and response procedures to reduce potential impact.
- Provide solutions to improve secure configuration and hardening of endpoint systems, perimeter networks, and cloud technologies.
- Perform technical analysis of malware and network/web application attacks and other suspicious activities.
- Use the Incident Response Lifecycle to guide your work tasks and implement processes and procedures.
Education and Experience:
- Certified Information Systems Security Professional (CISSP) or Equivalent preferred.
- SANS and/or Advanced GIAC certifications desired.
- Bachelor's degree in computer science or a related technology field or equivalent in comparable work experience within the network or security field preferred.
- Extensive experience maintaining, optimizing, and troubleshooting SOAR solutions.
- Experience with scripting and APIs strongly desired.
- Extensive experience with Palo Alto Networks solutions strongly desired.
- Experience with information security incident response and risk mitigation.
- Experience in enterprise environments.
- Familiarity with compliance frameworks such as SOC2, SOX and PCI a plus.
Knowledge and Skills:
- Highly motivated and able to work independently and as part of a fast-paced and high performing team.
- Open-minded, adaptable, and passionate about learning.
- Strong organization and planning skills.
- Strong analytical skills.
- Ability to solve unique problems with outside-the-box solutions.
- Broad knowledge of Enterprise Infrastructure concepts and best practices as they relate to Cyber Security and incident response.
- Python, JavaScript or Powershell.
- Solid understanding of packets, network traffic, and the OSI model.
- Knowledge of penetration testing methods and tools.
- Excellent communication and writing skills.
ADT is an Equal Employment Opportunity (EEO) Employer. We celebrate diversity and are committed to building an inclusive team that represents a variety of backgrounds, perspectives, and skills. ADT strives to ensure every employee and applicant feels valued. Visit us at jobs.adt.com/diversity to learn more.