Cybersecurity Engineer (SOAR Development Team)

About The Position

Requirements

• Bachelor’s degree and five years of experience in systems engineering or administration or an equivalent combination of education and work experience.
• In-depth knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security.
• Previous experience in planning and managing IT projects

Nice To Haves

• Bachelor’s degree and six years of experience or an equivalent combination of education and work experience.
• Experience with No-Code/Low-Code Security Orchestration and Automated Response (SOAR) Tools.
• Experience with Version Control tools for CI/CD Pipelines.
• Experience Supporting Complex Applications for IT projects.
• Experience Developing automated processes, testing with stakeholders, and deploying said processes into a regulated Production environment.
• Experience with Python Development.
• Experience with Docker, Kubernetes, containerization pipeline, and deployment process.
• Banking or financial services experience

Responsibilities

• Focus on the development, maintenance, and delivery of new Security Orchestration and Automation content including custom RESTful API integrations, SOAR Playbooks, Automations/Scripts, Jobs, dashboards, reports, widgets, and code via Continuous Integration / Continuous Delivery pipelines adhering to an Agile development practice.
• Develop and maintain the technical IT/cyber capabilities including all phases of the software development lifecycle and software stack which includes threat modeling of application designs, static application security testing (SAST), software composition analysis (SCA), dynamic application security testing (DAST), and penetration testing.
• Participate in efforts related to designing, planning, enhancing, and testing all cybersecurity technologies used throughout the enterprise including base-lining current systems, trend analysis, and capacity planning as required for future systems requirements and new technologies.
• Participate in the analysis of information to determine, recommend, and plan the use of new technologies, or modifications to existing equipment and systems that will provide capability for proposed project or work load, efficient operation and effective use of allotted resources.
• Participate in the implementation of new information security technologies or integration of existing technologies including initial configuration, installation, change management, and operational handoff.
• Take a new perspective on existing solutions to solve complex problems and exercise judgment based on the analysis (e.g. modeling, testing, etc.) of multiple sources of information.
• Provide technical support of information security technologies, providing problem analysis and resolution in a timely manner and explain and interpret complex, difficult, or sensitive information.
• Lead small cybersecurity projects with manageable risks and resource requirements; plays significant roles in larger, more complex initiatives.

Benefits

• Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates.
• Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays.
• Depending on the position and division, this job may also be eligible for Truist’s defined benefit pension plan, restricted stock units, and/or a deferred compensation plan.