Cyber Security Automation Engineer
India
Full Time
3 hours ago
No H1B
Key skills
Cyber SecurityPythonSplunkBashPowerShellAILarge Language ModelsOpenAIHugging FaceGitHub ActionsGitHubVersion ControlRepositoryAgileCI/CDCommunicationTime ManagementCollaboration
About this role
Role Overview
- Work with SOC, Insider Risk, DLP, Red Team, Threat Intel, and other security functions to design, deliver and maintain efficient, reusable, and reliable security automations.
- Responsible for the whole lifecycle of an automation playbook, from requirements gathering and -planning to design, testing, implementation, and maintenance.
- Lead initiatives to proactively identify security automation opportunities, get buy in from internal stakeholders, deploy them and measure efficiencies gained.
- Leverage Large Language Models (Open AI, Hugging face, etc.) to identify use cases that could force multiply security analysts’ ability to resolve incidents as well as automate actions wherever possible.
- Work with detection team to build end to end solutions involving automated feedback loops to help better tune detections to enrich data and support complex detections.
- Expand team’s automation capabilities to support all functions in security.
- Provide quality checks on automations to reduce errors and enforce continuous improvement.
- Advocate of standardization, where appropriate.
Requirements
- Bachelor’s degree in information & computer science, Statistics or a quantitative discipline in science
- Demonstrative experience in developing automation solutions for Cyber Security
- 2+ years of any SOAR tool experience (Splunk SOAR, Palo Alto XSOAR, Swimlane, Tines, etc.)
- 2+ years of Cyber Security Experience
- 2+ years of experience developing with Python.
- Strong background in Python
- Working knowledge of scripting languages Bash and PowerShell
- Experience working with REST and other third-party API integrations.
- Demonstrative experience in building solutions using OpenAI or other LLMs.
- Knowledge of software development best practices, including coding standards, code reviews, and testing methodologies.
- Strong understanding of IT security concepts and practices, with demonstrative experience in automating Information Security practices and workflows.
- Proficient in utilizing GitHub for version control, collaboration, and code repository management.
- Familiarity with continuous integration and continuous deployment (CI/CD) practices to streamline software development and deployment processes.
- Experience in utilizing CI/CD tools (such as GitHub Actions) to automate build, test, and deployment processes, ensuring smooth and efficient software delivery.
- Familiarity with any data visualization tool (E.g. PowerBI) to build and display efficiency gains
- Strong verbal communications skills and concise written communication skills.
- Strong organizational and multi-tasking and time management skills.
- Prefers to work in agile team environment.
Tech Stack
- Cyber Security
- Python
- Splunk
Benefits
- Competitive pay and benefits package
- Total Rewards Program