Duties

What You'll Do:

As a Security Automation Engineer, you will work both collaboratively and
independently to accomplish a variety of security engineering automation and
development tasks. You will develop and build automation playbooks and workflows
in a variety of technologies, including but not limited to Cortex XSOAR by Palo Alto,
AWS Lambda, and Terraform, among other AWS capabilities, and in Django. You
will be expected to continue learning and improving your security engineering skills
to match the current technical security challenges and innovations.

Who You'll Work With:

You will work collaboratively with fellow security Engineers, analysts, and other IT
security specialists. As a Security Automation Engineer, you'll be responsible for
designing, implementing, and maintaining automated security solutions in a Security
Operations Center (SOC). You will work closely with other security professionals to
identify areas where automation can improve security operations and reduce the
workload on security analysts. The role involves developing scripts, tools, and
workflows to automate security tasks such as threat detection, incident response,
and vulnerability management. As a Security Automation Engineer, you will also
ensure that automated solutions are integrated with existing security tools and
systems and that they are correctly configured and maintained.

Skills

Qualifications:
 Education: A bachelor's degree in IT/Computer Science or a related field is
preferred; a Master's degree is a plus.
 Programming and Scripting: Proficiency in programming in Python.
Experience in Django.
 Security Tools and Technologies: Familiarity with security tools and
technologies commonly used in SOC environments, such as SIEM (Splunk
preferred), intrusion detection/prevention systems (Palo Alto preferred),
endpoint protection solutions (Windows Defender preferred), vulnerability
scanners (wiz preferred), and threat intelligence platforms.
 Automation and Orchestration: Experience with automation and orchestration
tools like XSOAR / Demisto (preferred), Ansible, Puppet, or Chef. Knowledge
of workflow automation platforms such as ServiceNow or Jira is also desired.
 Cloud Computing: Experience working in AWS is highly desirable, preferably
AWS Solutions Architect preferred. Experience in AWS Terraform preferred.
 Secure Coding Practices: Familiarity and experience in secure coding
practices and using the SDLC is required.
 Networking and Systems: Experience or working knowledge of networking
and systems, operating systems (Windows, Linux), and cloud platforms
(AWS, Azure) are often required.
 Current AWS solutions architect certification is preferred.
 Analytical and Problem-Solving Skills: The ability to analyze complex security
issues, troubleshoot problems, and develop innovative solutions is crucial.
 Strong problem-solving and critical thinking skills are highly valued in this role.
  Communication and Collaboration: Effective communication skills are
essential for collaborating with cross-functional teams, including security
analysts, engineers, and management. The ability to clearly convey technical
concepts to non-technical stakeholders is vital.
 Continuous Learning: The field of cybersecurity is constantly evolving, so a
willingness to continuously learn and stay updated with the latest security
trends, threats, and technologies is essential.
 Ability, willingness, and proficiency to document your work is required.

Education

Bachelor's degree/Master's Degree in Computer Science, Information Systems,

Electrical Engineering or related discipline with excellent academic record