Design, develop, and maintain security automation tools and scripts to enhance the SOC's operational efficiency and response capabilities.
Utilize Python and other scripting languages to create custom solutions for integrating and automating security processes.
Leverage various APIs to automate data retrieval and report generation, enhancing the SOC's analytical and reporting capabilities.
Regularly investigate attacks and collaborate with Security Operations to understand the threat landscape across the customer base to identify opportunities for improving detection logic and automation.
Stay updated with the latest cybersecurity trends and technologies to continually innovate and improve SOC processes.
Collaborate with SOC analysts to understand their needs and develop automation solutions that support their workflows.
Work closely with other technical teams to integrate security automation tools with existing systems and platforms.

2+ years of experience in coding, development, or scripting, with a specific focus on cybersecurity applications, Python Strongly Preferred.
Proven experience in security automation and tool management within a SOC environment.
1+ years of experience in an information security role, with a preference for experience in SOC, Threat Hunting, or DFIR.
Knowledge of data structures, algorithms, and data analysis techniques.
Proficiency in leveraging APIs for data retrieval and automation.
Familiarity with Elasticsearch, OCSF, Kibana query languages, or similar queries.
Excellent communication skills for effectively summarizing and presenting findings and trends.

Junior Security Automation Engineer – Skillbridge Intern

Key skills