First Tek
Edison- Sr SOAR Automation Engineer
First Tek, Rosemead, CA, United States
Roles and Responsibilities:
Senior SOAR Automation Engineer
Role and Responsibilities
• The ideal candidate will have experience with both Palo Alto XSOAR and/or Splunk SOAR.
• Palo Alto XSOAR and/or Splunk SOAR platform architecture, implementation, and troubleshooting.
• Participate in the intake, analysis, and finalization of cybersecurity use cases.
• Analyze, build, test, deploy, maintain, and document new SOAR playbooks to extend existing automation capabilities.
• Write, test, and maintain automation scripts/workflows within SOAR platform.
• Translate conceptual SOC requirements into technical data and integration requirements for the SOAR platform.
• Develop creative new approaches to accelerate threat detection, responses and remediation of security incidents.
• Ability to autonomously prioritize and successfully deliver across a portfolio of projects.
Qualifications and Education Requirements: High School Diploma or Equivalent
Required
• 3-5 years of security engineering experience in the Information Security industry OR as a technical expert for an internal Information Security program.
• Scripting and development skills (BASH, Perl, Python or Java) with strong knowledge of regular expressions
• Expertise developing SOC and security-focused content and automation.
• Experience authoring security runbooks, policy, and best practice documentation.
• Experience developing secure and efficient SOAR integrations.
• Proficiency in developing data ingestion. aggregation, and transformation strategies. Must have a valid driver's license and current state required minimum vehicle insurance coverage to drive onto Client and Company property.
Preferred Skills:
Splunk Phantom Certified Admin and/or Palo Alto Networks Certified Security Automation Engineer
• Experience with other Information Security solutions including DLP, NAC, SASE, NGFW, EDR, XDR, SIEM
• Prefer local to Southern California.
• Out of US candidates will NOT be considered.
M-F 8-5 Remote - Candidate should reside in CA, preferably So Cal but just has to be in C
Senior SOAR Automation Engineer
Role and Responsibilities
• The ideal candidate will have experience with both Palo Alto XSOAR and/or Splunk SOAR.
• Palo Alto XSOAR and/or Splunk SOAR platform architecture, implementation, and troubleshooting.
• Participate in the intake, analysis, and finalization of cybersecurity use cases.
• Analyze, build, test, deploy, maintain, and document new SOAR playbooks to extend existing automation capabilities.
• Write, test, and maintain automation scripts/workflows within SOAR platform.
• Translate conceptual SOC requirements into technical data and integration requirements for the SOAR platform.
• Develop creative new approaches to accelerate threat detection, responses and remediation of security incidents.
• Ability to autonomously prioritize and successfully deliver across a portfolio of projects.
Qualifications and Education Requirements: High School Diploma or Equivalent
Required
• 3-5 years of security engineering experience in the Information Security industry OR as a technical expert for an internal Information Security program.
• Scripting and development skills (BASH, Perl, Python or Java) with strong knowledge of regular expressions
• Expertise developing SOC and security-focused content and automation.
• Experience authoring security runbooks, policy, and best practice documentation.
• Experience developing secure and efficient SOAR integrations.
• Proficiency in developing data ingestion. aggregation, and transformation strategies. Must have a valid driver's license and current state required minimum vehicle insurance coverage to drive onto Client and Company property.
Preferred Skills:
Splunk Phantom Certified Admin and/or Palo Alto Networks Certified Security Automation Engineer
• Experience with other Information Security solutions including DLP, NAC, SASE, NGFW, EDR, XDR, SIEM
• Prefer local to Southern California.
• Out of US candidates will NOT be considered.
M-F 8-5 Remote - Candidate should reside in CA, preferably So Cal but just has to be in C