Blackpoint CyberRemote
Jr. Security Automation Engineer Skillbridge Intern
United States of America
Internship
4 weeks ago
No H1B
Key skills
PythonSecurity AutomationSOC EnvironmentThreat HuntingDFIRData StructuresAlgorithmsData AnalysisAPI IntegrationElasticsearchOCSFKibana Query LanguagesPowerShellBIPower BIKibanaCommunicationCollaboration
About this role
Blackpoint Cyber is the leading provider of world-class cybersecurity threat hunting, detection and remediation technology. They are seeking a Jr. Security Automation Engineer Skillbridge Intern to design, develop, and maintain security automation tools and scripts, enhancing operational efficiency within the Security Operations Center (SOC). The role involves collaboration with SOC analysts and continuous improvement of security processes through automation and innovation.
Responsibilities:
- Design, develop, and maintain security automation tools and scripts to enhance the SOC's operational efficiency and response capabilities
- Utilize Python and other scripting languages to create custom solutions for integrating and automating security processes
- Leverage various APIs to automate data retrieval and report generation, enhancing the SOC's analytical and reporting capabilities
- Work with internal and external data sources to streamline data aggregation and analysis
- Regularly investigate attacks and collaborate with Security Operations to understand the threat landscape across the customer base to identify opportunities for improving detection logic and automation
- Stay updated with the latest cybersecurity trends and technologies to continually innovate and improve SOC processes
- Collaborate with SOC analysts to understand their needs and develop automation solutions that support their workflows
- Work closely with other technical teams to integrate security automation tools with existing systems and platforms
Requirements:
- 2+ years of experience in coding, development, or scripting, with a specific focus on cybersecurity applications, Python Strongly Preferred
- Proven experience in security automation and tool management within a SOC environment
- 1+ years of experience in an information security role, with a preference for experience in SOC, Threat Hunting, or DFIR
- Knowledge of data structures, algorithms, and data analysis techniques
- Proficiency in leveraging APIs for data retrieval and automation
- Familiarity with Elasticsearch, OCSF, Kibana query languages, or similar queries
- Excellent communication skills for effectively summarizing and presenting findings and trends
- General understanding of solutions such as superblocks, n8n, tines, utilizing webhooks, and configuring tools like Hive or SOAR platforms
- Experience in network/system administration, preferably in a cybersecurity context
- Scripting experience with PowerShell is a plus
- Familiarity with Power BI, Excel, or similar tools for data analysis and visualization
- Bachelor's Degree in Computer Science, Engineering, or related technical discipline
- Advanced skills in Kibana, including dashboard creation and data visualization
- Background in network/system administration
- Proficiency in Python Scripting