Exciting Remote SOAR Developer/Engineer contract opportunity.
Requirements
- Automate SOC Security Incident Response processes providing the ability to analyze and resolve alerts from existing security tools leveraging a single stream management system
- Develop and maintain custom applications for SOC workflows
- Assist with process development and process improvement for SOC to include creation/modification of SOPs, Playbooks, and work instructions
- Integrate SOAR platform with other security tools and APIs to execute automated workflows
- Author, test, and maintain automation scripts/workflows within SOAR platform
- Design, implement, and maintain efficient and reusable Python, Javascript, and JSON code
- Review, debug, and resolve technical issues throughout all stages of SDLC
- Coordinate with system administrators and engineers to provision service accounts and/or grant required permissions
- Actively mentor and train team members of the SOC processes, governance, and frameworks
Education, Experience, and Skill Requirements
- 2 plus years of work experience in one or more Cybersecurity focus areas such as SOC or Network Security
- Bachelors degree in Computer Science, Information Systems, Engineering, or related field
- Experience with SOAR platforms such as Swimlane, Phantom, XSOAR, etc…
- Experience in security process mapping, security process analysis, security process improvement concepts, models, and best practices
- Proficient in Python scripting
- Working knowledge of REST APIs, JSON, HTML/CSS, Javascript, XML
- Experience authoring SOC SOPs, playbooks, work instructions and/or other process documents
- Experience with SIEMs, such as Splunk, XSIAM, QRadar, etc…
- Experience with Visual Studio
- Experience in DevSecOps environment
Skills Required
- 2 plus years of work experience in Cybersecurity
- Bachelor's degree in Computer Science, Information Systems, Engineering, or related field
- Experience with SOAR platforms such as Swimlane, Phantom, XSOAR
- Proficient in Python scripting
- Working knowledge of REST APIs, JSON, HTML/CSS, Javascript, XML
- Experience with SIEMs such as Splunk, XSIAM, QRadar
- Experience in DevSecOps environment
What We Do
Founded in 2001 in the consulting practice of Risk Management and Information Security and now grown to proudly serve over 500 companies worldwide and some of the most notable names in a variety of industries. Now WaveStrong focuses on consulting services coupled with industry leading partners and products that include IBM Global Services, Trustwave, Symantec, HCL Technologies. The goal is to focus on customer outcomes developing and implementing the RIGHT balance of services and solutions to help our customers. WaveStrong serves the US and Canada from its staff located throughout the US. Our solution consultants help CIO's, CISO's, and IT Directors implement information security controls. Our AIM is to be one of our customer's most trusted resources when it comes to information, data, and cybersecurity. At WaveStrong, we not only secure our customer's data and information, we also provide smart solutions and effective strategies to help our customers establish strong cybersecurity, to help identify and deal with risks and threats to their business, and to know and use the right tools so we can better protect their business from further and newer cyber threats. We are known for our sensible approach to risk management, data protection solutions, and project management.
.png){kind=logo}
