SOAR Engineer

Overview

On Site
$40 - $50
Contract - W2
Able to Provide Sponsorship

Skills

Cascading Style Sheets
Code Review
Collaboration
Computer Science
Cyber Security
Debugging
DevSecOps
FOCUS
HTML
IBM QRadar
Incident Management
Information Systems
JSON
JavaScript
Management
Mentorship
Multitasking
Network
ProVision
Process Analysis
Process Engineering
Process Improvement
Process Mapping
Python
Scripting
Splunk
System On A Chip
Workflow

Job Details

SOAR Engineer

Location Dallas, TX, onsite

Accepting W2 (no C2C)

Job Description:

Primary Responsibilities

  • Automate SOC Security Incident Response processes, providing the ability to analyze and resolve alerts from existing security tools, leveraging a single stream management system
  • Develop and maintain custom applications for SOC workflows
  • Assist with process development and process improvement for SOC to include creation/modification of SOPs, Playbooks, and work instructions
  • Integrate the SOAR platform with other security tools and APIs to execute automated workflows
  • Author, test, and maintain automation scripts/workflows within the SOAR platform
  • Design, implement, and maintain efficient and reusable Python, JavaScript, and JSON code
  • Review, debug, and resolve technical issues throughout all stages of the SDLC
  • Coordinate with system administrators and engineers to provision service accounts and/or grant required permissions
  • Actively mentor and train team members of the SOC processes, governance, and frameworks

Education, Experience, and Skill Requirements

  • 2+ years of work experience in one or more Cybersecurity focus areas, such as SOC or Network Security
  • Bachelor's degree in Computer Science, Information Systems, Engineering, or related field
  • Experience with SOAR platforms such as Swimlane, Phantom, XSOAR, etc.
  • Experience in security process mapping, security process analysis, security process improvement concepts, models, and best practices
  • Proficient in Python scripting
  • Working knowledge of REST APIs, JSON, HTML/CSS, Javascript, XML
  • Experience authoring SOC SOPs, playbooks, work instructions, and/or other process documents
  • Experience with SIEMs, such as Splunk, XSIAM, QRadar, etc
  • Experience with Visual Studio
  • Experience ina DevSecOps environment
  • Ability to demonstrate an investigative mindset. Not just being able to execute a task but being able to understand the reason for that task, and determine next steps depending on the results while maintaining a firm grasp of the overall goals of the entire process

Measures of Success

  • Actively maintains and troubleshoots SOAR systems
  • Demonstrates and maintains skillsets to remain current in existing and future technologies
  • Demonstrates collaboration and cooperation with SOC team members and internal partners in a professional manner
  • Develops skills in prioritization and multi-tasking, and success in adapting to change in a fast-paced environment
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.