Enterprise Cybersecurity Automation Engineer

About The Position

Requirements

• 4+ years of experience with programming using Python, REST APIs, and SOAP APIs
• 3+ years of experience with network and system management tools, including security management tools, such as Splunk, Carbon Black, CrowdStrike, Nitro, or ArcSight
• 3+ years of experience with playbook development using Security Orchestration and Automated Response (SOAR) platforms, including Swimlane, Phantom, ServiceNow, Tines, or Demisto
• Experience with security operations, incident response, threat management, or security engineering
• Experience with using cloud provider services, including AWS, Azure, or Google Cloud
• Ability to create and execute test plans for new integrations and automation
• Ability to identify and address areas where automation can be improved by either refactoring, building, or adopting new tooling and technologies
• Ability to develop innovative solutions to improve customer experience and rapidly prototype and test solutions with production-level quality
• Ability to obtain a Secret clearance
• Bachelor's degree

Nice To Haves

• Experience in log management platforms experience, such as Splunk, Elasticsearch, Logstash, Kibana - ELK, and Elastic Stack
• Experience with container services, including Docker and Kubernetes
• Experience with Linux administration
• Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

Responsibilities

• Integrate and automate tasks to improve the efficiency of the Enterprise Cybersecurity Teams
• Manage and maintain existing integrations, automation, workflows, and documentation while working to expand into areas that have not been optimized
• Use knowledge of Python scripting and Application Programming Interfaces (APIs) to integrate security systems into existing SOAR Platform
• Responsible for feature requests and bug support
• Provide technical engineering services in support of automating and orchestrating the company's security systems and solutions
• Directly support the Cybersecurity Operations teams to capture requirements to design, develop, and support the company's automation solutions that will ensure maximized operational efficiency in support of the cyber mission

Benefits

• At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care.
• Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values.
• Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs.
• Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits.
• We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.