Security Platform Developer, Security Automation (Python, Splunk SOAR)

About The Position

Requirements

• Python development experience (2-3 years).
• An Information Technology University degree/college diploma in related discipline(s) or equivalent work experience, and/or 5 years experience in Information Technology.
• 2-3+ years in security IT industry experience.

Nice To Haves

• Professional designation in IT security (such as CISM, CISSP, CISA, GIAC, AWS or CompTIA) preferred.
• Experience with SOAR tools (Splunk SOAR, Cortex XSOAR, etc).
• Development experience (2-3 years) in Python, YAML, etc.
• Experience with Ansible development.
• Experience planning, researching, and developing security policies, standards, and procedures.
• Knowledge of one or more: end-point detection and response, intrusion detection, crypto technologies, certificate management, email security, web content filtering technologies, cloud security.
• Knowledge of Security Information and Event Management platforms including log types.
• Experience with Windows and Linux based operating systems.
• Experience in deploying enterprise-level technology via managed projects.
• Knowledge of networking technologies, firewalls, web application firewalls and intrusion prevention systems.
• Knowledge of cloud technologies.
• Knowledge of disaster recovery, technologies, and methods.
• Strong communicator spoken and written with the ability to communicate technical issues to peers and management.

Responsibilities

• Develop playbooks (Python) in Splunk SOAR to triage and automate manual processes.
• Develop automated workflows (YAML) in Ansible Automation Platform to manage accounts and certificates.
• Triage and remediate errors within automation environments.
• Meet with stakeholders to refine requirements for new automation workflows.
• Work on security initiatives and enterprise-level projects, performing proof of technology/concept asks.
• Implement new security controls and capabilities into existing technologies.
• Deploy, support, and maintain new security technologies and platforms.
• Participate in a 24x7 on-call support team and provide support during major incident management calls.
• Continuously improve operational and security platform process activities.
• Transition and operationalize projects, including developing RACI documents and educating BAU teams.
• Document, update, and maintain cyber security playbooks, policies, and knowledge base articles.

Benefits

• Wellness programs that support the three pillars of your health – mental, physical, and financial
• The opportunity to move along a variety of career paths with amazing networking potential.