Key skills
PythonBashPowerShellAILarge Language ModelsOpenAIHugging FaceTerraformGitHub ActionsCloudFormationSplunkGitHubVersion ControlRepositoryAgileCI/CDCommunicationTime ManagementCollaboration
About this role
JLL Technologies is an international commercial real estate firm that is seeking a Senior Cyber Security Automation Engineer responsible for designing and developing security automations involving SOAR and AI. The role requires hands-on knowledge of programming languages and aims to improve security automation capabilities across various security functions.
Responsibilities:
- Work with SOC, Insider Risk, DLP, Red Team, Threat Intel, and other security functions to design, deliver and maintain efficient, reusable, and reliable security automations
- Responsible for the whole lifecycle of an automation playbook, from requirements gathering and -planning to design, testing, implementation, and maintenance
- Lead initiatives to proactively identify security automation opportunities, get buy in from internal stakeholders, deploy them and measure efficiencies gained
- Leverage Large Language Models (Open AI, Hugging face, etc.) to identify use cases that could force multiply security analysts’ ability to resolve incidents as well as automate actions wherever possible
- Work with detection team to build end to end solutions involving automated feedback loops to help better tune detections to enrich data and support complex detections
- Expand team’s automation capabilities to support all functions in security
- Provide quality checks on automations to reduce errors and enforce continuous improvement
- Advocate of standardization, where appropriate
Requirements:
- Masters/Bachelor's degree in Information & Computer Science, Statistics or a quantitative discipline in science
- Demonstrative experience in developing automation solutions for Cyber Security
- 5+ years Information Technology experience
- 4+ years of Cyber Security Experience
- 2+ years of any SOAR tool experience (Splunk SOAR, Sentinel, Swimlane, etc.)
- 4+ years of experience developing with Python
- Strong background in Python
- Working knowledge of scripting languages Bash and PowerShell
- Experience working with REST and other third-party API integrations
- Demonstrative experience in building solutions using OpenAI or other LLMs
- Knowledge of software development best practices, including coding standards, code reviews, and testing methodologies
- Strong understanding of IT security concepts and practices, with demonstrative experience in automating Information Security practices and workflows
- Proficient in utilizing GitHub for version control, collaboration, and code repository management
- Experience in utilizing CI/CD tools (such as GitHub Actions) to automate build, test, and deployment processes, ensuring smooth and efficient software delivery
- Strong verbal communications skills and concise written communication skills
- Strong organizational and multi-tasking and time management skills
- Familiarity with continuous integration and continuous deployment (CI/CD) practices to streamline software development and deployment processes
- Familiarity with infrastructure-as-code (IaC) tools (e.g., Terraform, CloudFormation) to automate infrastructure provisioning and ensure consistent environments throughout the development lifecycle
- Prefers to work in agile team environment