Security Automated Response Engineer

About The Position

Requirements

• 2+ years of experience building out security automation capabilities based on analyst requirements
• Experience with playbook development using Security Orchestration and Automated Response (SOAR) platforms such as Tines, Palo Alto XSOAR, Splunk Phantom, or Swimlane
• Experience with threat intelligence solutions such as ThreatQ, OpenCTI, or Analyst1
• Experience with programming using Python
• Experience with integrating solutions via APIs and creating custom apps or integrations
• Secret clearance
• HS diploma or GED

Nice To Haves

• Experience with Linux administration
• Experience with containerization technology such as Docker, Kubernetes, or Podman
• Experience with leveraging version control systems such as Git
• Experience with log management platforms such as the Elastic Stack or Splunk
• Experience supporting Defensive Cyber Operations
• Experience with integrating with AI systems
• Experience in DoW, Intelligence Community, or other regulated environments
• Knowledge of AI gateway security
• Knowledge of HTML, JS, CSS
• Knowledge of Zero Trust Architecture (ZTA) principles

Responsibilities

• Developing Threat Defense Solutions
• Focusing on detection, automation, and development of artificial intelligence (AI) capabilities
• Identifying the right mix of tools, techniques, and procedures to translate customer needs and future goals into a plan that will enable secure and effective solutions
• Taking a critical approach to solution design, identifying gaps, providing alternatives, and customizing solutions to maintain a balance of security and business needs
• Creating technical solutions to identify security threats, enhance detection capabilities, and drive improvement in response efforts

Benefits

• health, life, disability, financial, and retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program