Security Cortex XSOAR Engineer

Security Cortex XSOAR Engineer

Client: TriWest

POP: 12+ months

Location: Remote

SCOPE

As a SOAR Security Engineer, you will be responsible for assisting with the deployment, and maintenance of the Security Orchestration Automation & Response (SOAR) solution within a 24x7x365 federal security operation. The SOAR Engineer will analyze our client s business requirements / systems /networks and translate those specifications into a SOAR design that provides an efficient and effective SOAR solution within a federal cloud environment.

REQUIRED SKILLS

• Minimum Bachelors degree in Cyber, Computer Science, or related field +7 Years relevant working experience.
• DoD Approved 8570 certification REQUIRED such as: CompTIA Security+ , CEH, CFR, CCNA Cyber Ops, CCNA-Security, CYSA+**, GCIA, GCIH, GICSP.
• 7+ years of relevant professional experience
• 4+ years of SOAR Engineering / administration experience.
• 2+ years of management of SOAR within a Federal environment.
• Understanding of enterprise environments, specifically cloud-based and hybrid cloud environments. Knowledge of security frameworks including such as MITRE ATT&CK, OWASP, & NIST.
• Hands-on troubleshooting, analysis, and technical expertise to resolve incidents and/or service requests.
• Strong written communication skills and the ability to articulate technical security analysis to a non-technical audience.
• Understanding of possible attack activities such as network reconnaissance probing/ scanning, DDOS, malicious code activity, etc.
• Able to troubleshoot and be a problem solver with analytical proficiency in Linux.
• Strong scripting skills (JS\Python\Powershell).
• Attention to details, fast learner and excellent communication skills. Be able to communicate technical information in a simplified, easy to understand manner.
• Cybersecurity knowledge and experience advantage.
• Provide Technical Support to top-tier customers.
• Provide tailored troubleshooting, configuration guidance, and best practices.
• Manage support cases to ensure issues are recorded, tracked, and resolved with timely follow-ups with thorough documentation of all the troubleshooting steps in the ticketing system.
• Conduct multi-vendor troubleshooting on complex customer engagements and build positive customer experience by working closely with Account, Sales, and Marketing teams.
• Utilize fault isolation and root cause analysis skills to provide post-sales technical support, configuration, troubleshooting, and standard methodologies to customers.

PREFERRED SKILLS

• Knowledge of Federal Security Standards such as NIST and DoD.
• Understanding and experience with FedRAMP Cloud Security Requirements.

TASKS

• Assist with Configuration, Deployment, and Maintenance of SOAR technologies within a federal cloud environment.
• Aid in the translation of client requirements into technical design / implementation.
• Configuration of SOAR in accordance with DISA STIG and CIS Benchmark requirements.
• Recommend system and process improvements to continually enhance security operations.
• Assist security incident responders during system investigations.
• Development of Dashboards and Reports as they relate to SOAR.
• Responding to tickets related to SOAR configuration changes and troubleshooting.