Senior SOAR Consultant

Description and Requirements
The Team You Will Join
The Cyber Platforms and Automation team is primarily based out of MetLife's global technology headquarters in Cary, NC. This team manages the key cybersecurity platforms including SIEM, UEBA, SOAR, MSV, NDR, and the Cybersecurity Lab, develops security content and processes to automate threat detection and incident response. The team takes immense pride to pursue the vision to transform the Security Operations Center (SOC) to next generation with AI-driven cybersecurity technologies and processes to detect and predict threats with high accuracy, to prevent and to automate response to threats with high efficiency.
The Opportunity
The Senior Security Orchestration and Automation Response (SOAR) consultant will be responsible to develop and run an ongoing program of addressing repeatable security design patterns and integrating various Cyber Security platforms. The position requires experience with CyberSecurity related tools, full-stack hands-on programming abilities and ability to analyze, design and develop new solutions and approaches quickly. Ability to evangelize, envision new proof of concepts, implementation, integration and coordination as well as familiarity with SCRUM are considered plus. This role requires strong combination of technical skills, security knowledge and strong problem-solving skills.
How You'll Help Us Build a Confident Future (Key Responsibilities)

• Design and implement automation use-cases and workflows for incident response, threat hunting, Fraud and insider risk management and vulnerability management.
• Developing custom integration, API Integration with various tools & platforms (e.g.: Threat Intel Platform TIP, firewalls, SIEM etc.) to enhance SOAR capabilities.
• Write code/scripts/automation to detect, prevent or integrate new IOCs or to automate cyber security processes to increase efficiencies.
• Collaborate with Security Analysts to tune and enhance cyber security solutions and technologies to keep up with the latest threats.
• Analyzing security data to identify automation opportunities.
• Monitor and troubleshoot complex systems, tools and/or networking solutions.
• Administrate SOAR platform and manage content release.
• Perform investigative research, analysis and troubleshooting to identify, resolve, and report complex security issues.
• Provide insight on issues and serve as a mentor to peers and team members for assigned area of responsibility. Follow written risk and compliance policies and procedures.

What You Need to Succeed
(Required Qualifications)

• Bachelor's degree in computer science, information systems or related field.
• 5+ years of related experience in Cyber Security, Incident Response, Information Security and/or Information Technology.
• Experience in Security Information and Event Management (SIEM), Firewalls/IPS/IDS and Windows, Linux, and Apple endpoint security solutions.
• Hands on experience coding with Python or similar development languages.
• Advanced troubleshooting skills (e.g.: Wireshark, host forensics, log analysis and debugging).
• Understanding of general incident response methodologies, threats and vulnerabilities, cyber security practices, and security tool architectural and engineering principles.
• Strong analytical and problem-solving skills are required.
• Strong communication skills, both written and verbal.

What Can Give You an Edge
(Preferred Qualifications)

• Relevant technical and security certifications such as CISSP, GIAC or any SOAR certificates.
• C#, .NET development experience.
• 2+ years hands on experience with SOAR platform.
• SOAR platform administration and content release management.
• PowerShell, JavaScript, or API development experience preferred.
• Understanding of national and international laws, regulations, policies and ethics related to cybersecurity.

Benefits We Offer
Our U.S. benefits address holistic well-being with programs for physical and mental health, financial wellness, and support for families. We offer a comprehensive health plan that includes medical/prescription drug and vision, dental insurance, and no-cost short- and long-term disability. We also provide company-paid life insurance and legal services, a retirement pension funded entirely by MetLife and 401(k) with employer matching, group discounts on voluntary insurance products including auto and home, pet, critical illness, hospital indemnity, and accident insurance, as well as Employee Assistance Program (EAP) and digital mental health programs, parental leave, volunteer time off, tuition assistance and much more!
About MetLife
Recognized on Fortune magazine's list of the 2024 "World's Most Admired Companies" as well as the 2024 Fortune 100 Best Companies to Work For ®, MetLife , through its subsidiaries and affiliates, is one of the world's leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East.
Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by empathy, we're inspired to transform the next century in financial services. At MetLife, it's #AllTogetherPossible . Join us!
Equal Employment Opportunity/Disability/Veterans
If you need an accommodation due to a disability, please email us at [email protected]. This information will be held in confidence and used only to determine an appropriate accommodation for the application process.
MetLife maintains a drug-free workplace.
#BI-Hybrid