SOAR Engineer

About The Position

Requirements

• 3+ years of experience designing, deploying, and configuring security solutions
• Experience with SIEM tools for visibility and analytics, including Elastic
• Experience with SOAR tools including Palo Alto, Splunk, or Tines
• Experience in cyber event analytics and workflow
• Experience documenting and diagraming workflow processes
• Knowledge of scan capabilities, assets management visibility, and patch management systems
• Secret clearance
• HS diploma or GED

Nice To Haves

• Experience with operating systems including Linux, networking, cloud and containers
• Experience on Red Team activities
• Experience working in federal, DoD, or IC agency environments
• Experience managing and maintaining containerization solutions
• Knowledge of endpoint detection and response (EDR) capabilities
• Knowledge of Torq, Microsoft Sentinel Automation, or Cortex
• Knowledge of security engineering or cloud security
• Knowledge of federal information security policies, standards, procedures, directives, frameworks, federal security authorizations, assessment, and risk management processes for enterprise systems
• Top Secret clearance
• Bachelor's degree in an IT, Cybersecurity, or Engineering field

Responsibilities

• Architecting, deploying, and operating security solutions
• Monitoring, detecting, and responding to potentially malicious cyber behavior
• Creating standard operating procedures and configurations for optimal zero trust security posture
• Optimizing automation speed event review and resolution with analysts, engineers, and administrators
• Coordinating with multi-discipline zero trust engineering team to recommend enhanced design and operations
• Building the operational playbook
• Mentoring advanced cybersecurity engineers

Benefits

• health, life, disability, financial, and retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program