Key skills
AirflowAmazon RedshiftAnsibleBigQueryCloudCyber SecurityETLFirewallsLinuxPythonShell ScriptingSQLShellBashPowerShellAIAnalyticsSnowflakeRedshiftGitCI/CDLeadershipCollaborationWAF
About this role
Role Overview
- Supporting daily operations, including internal/external stakeholder engagement and dotted-line leadership
- Designing and maintaining robust, scalable data pipelines and ETL processes using Python, ensuring security is baked into the data architecture from inception
- Utilizing Ansible to automate the provisioning, configuration, and hardening of data environments and analytics servers to maintain a consistent security posture
- Identifying and eliminating manual bottlenecks in the data lifecycle through custom scripting and CI/CD integration, automating the deployment of both security models and analytics code
- Performing complex data analysis to identify trends and patterns, building predictive models that serve a dual mission: providing actionable business insights and high-fidelity threat intelligence
- Developing sophisticated Python-based models to detect anomalies and hidden patterns within massive datasets, translating raw data into defensive signals
- Designing and executing intelligence-driven testing and adversary emulation exercises to validate security controls, including adversarial stress-testing of AI models to ensure resilience against manipulation and evasion
- Translating sophisticated threat actor Tactics, Techniques, and Procedures (TTPs) into analytical requirements and security models to close detection gaps
- Recommending ways to mature and advance the preventive and defensive capabilities for the GTS environment
- Promoting an environment of collaboration and individual accountability when it comes to problem-solving, decision-making, and process improvements
Requirements
- Bachelor’s degree or four or more years of work experience
- Six or more years of relevant experience required, demonstrated through one or a combination of work and/or military experience, or specialized training
- Four or more years experience with scripting and programming (i.e. Python or Powershell) for automation of bulk configuration changes, data parsing, API interactions, and custom tool development
- Expert-level proficiency in Python
- Deep experience with Ansible for automating repetitive tasks, managing server configurations, and deploying applications
- Strong command of SQL and experience working with cloud data warehouses (e.g., Snowflake, BigQuery, or Redshift)
- Comfort working in a Linux environment, including shell scripting (Bash)
- Advanced knowledge of Git workflows and collaborative development
- Experience with workflow orchestration tools like Airflow, Dagster, or Prefect is a significant plus
- Experience providing support for security related technologies (i.e. SIEM, Antivirus, Firewalls, WAF, Proxy, IDS/IPS, DLP)
- Knowledge of security incident log analysis, malware analysis & cyber security incident response
- Certifications like: Network+, Security+, GSEC, CISSP or CISM
Tech Stack
- Airflow
- Amazon Redshift
- Ansible
- BigQuery
- Cloud
- Cyber Security
- ETL
- Firewalls
- Linux
- Python
- Shell Scripting
- SQL
Benefits
- Flexible work arrangements
- Professional development opportunities