SOAR Engineer

SOAR Engineer

Location Dallas, TX, onsite

Accepting W2 (no C2C)

Job Description:

Primary Responsibilities

• Automate SOC Security Incident Response processes, providing the ability to analyze and resolve alerts from existing security tools, leveraging a single stream management system
• Develop and maintain custom applications for SOC workflows
• Assist with process development and process improvement for SOC to include creation/modification of SOPs, Playbooks, and work instructions
• Integrate the SOAR platform with other security tools and APIs to execute automated workflows
• Author, test, and maintain automation scripts/workflows within the SOAR platform
• Design, implement, and maintain efficient and reusable Python, JavaScript, and JSON code
• Review, debug, and resolve technical issues throughout all stages of the SDLC
• Coordinate with system administrators and engineers to provision service accounts and/or grant required permissions
• Actively mentor and train team members of the SOC processes, governance, and frameworks

Education, Experience, and Skill Requirements

• 2+ years of work experience in one or more Cybersecurity focus areas, such as SOC or Network Security
• Bachelor's degree in Computer Science, Information Systems, Engineering, or related field
• Experience with SOAR platforms such as Swimlane, Phantom, XSOAR, etc.
• Experience in security process mapping, security process analysis, security process improvement concepts, models, and best practices
• Proficient in Python scripting
• Working knowledge of REST APIs, JSON, HTML/CSS, Javascript, XML
• Experience authoring SOC SOPs, playbooks, work instructions, and/or other process documents
• Experience with SIEMs, such as Splunk, XSIAM, QRadar, etc
• Experience with Visual Studio
• Experience ina DevSecOps environment
• Ability to demonstrate an investigative mindset. Not just being able to execute a task but being able to understand the reason for that task, and determine next steps depending on the results while maintaining a firm grasp of the overall goals of the entire process

Measures of Success

• Actively maintains and troubleshoots SOAR systems
• Demonstrates and maintains skillsets to remain current in existing and future technologies
• Demonstrates collaboration and cooperation with SOC team members and internal partners in a professional manner
• Develops skills in prioritization and multi-tasking, and success in adapting to change in a fast-paced environment