Job Description

Job ID: SC-10794 Remote Security Analyst/Architect (CISSP/CISA/CISO/CEH/OSCP/GPEN) with SOAR, Python/Bash/PowerShell, REST API, JSON, YAML, MITRE ATT & CK Framework, CORTEX XSOAR Platform, SIEM experience

Location: Columbia, SC (Department of Administration (Admin))

Duration: 12 Months

Work Location: Fully Remote

Candidate Location: No SC residency required. Open to nationwide candidates.

REQUIRED EDUCATION/CERTIFICATIONS:

• BACHELOR'S DEGREE IN AN INFORMATION TECHNOLOGY OR INFORMATION SECURITY RELATED FIELD
• EIGHT YEARS OF RELEVANT WORK EXPERIENCE MAY BE SUBSTITUTED IN LIEU OF EDUCATION
• FIVE YEARS OF EXPERIENCE IN SUPPORTING LARGE IT ENVIRONMENTS AND/OR SYSTEM DEPLOYMENTS
• 5+ YEARS OF EXPERIENCE WITH AUTOMATION PLATFORMS OR SOAR SOLUTIONS.
• STRONG SCRIPTING AND AUTOMATION SKILLS (PYTHON, BASH, POWERSHELL, OR SIMILAR).
• UNDERSTANDING OF REST APIS, JSON, AND YAML.
• FAMILIARITY WITH MITRE ATT & CK FRAMEWORK
• EXPERIENCE IN WORKING IN MULTI-TENANCY ENVIRONMENT; EXPERIENCE IN MULTI-AGENCY OR ENTERPRISE SERVICE PROJECTS.

PREFERRED EDUCATION/CERTIFICATIONS:

• CISSP, CISA, CISO OR EQUIVALENT ADVANCED SECURITY CERTIFICATION.
• ADDITIONAL RELEVANT CERTIFICATIONS (E.G., CEH, OSCP, GPEN).
• VENDOR CERTIFICATIONS IN SOAR OR AUTOMATION TECHNOLOGIES.

ADDITIONAL SKILLS/DUTIES:

• EXPERIENCE WITH DASHBOARD CREATION AND REPORTING.
• EXCELLENT COMMUNICATION AND CUSTOMER SERVICE SKILLS FOR AGENCY-FACING ENGAGEMENT.
• PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE): EXPERIENCE CREATING AUTOMATIONS WITHIN THE CORTEX XSOAR PLATFORM.
• KNOWLEDGE OF SECURITY MONITORING USE CASES AND INCIDENT RESPONSE SUPPORT.
• RESOURCES LOCAL TO COLUMBIA, SOUTH CAROLINA OR SURROUNDING CITY IN SOUTH CAROLINA ARE PREFERRED

DAILY DUTIES / RESPONSIBILITIES:

• PREFERENCE WILL BE GIVEN TO A CANDIDATE WHO CAN WORK ONSITE OVER HYBRID AND OVER FULL-TIME REMOTE (ON-SITE AS NEEDED).
• PROVIDE TECHNICAL EXPERTISE AND EXPERIENCE IN CREATING EFFICIENT AUTOMATION WORKFLOWS.
• DEVELOP, IMPLEMENT AUTOMATIONS AND OPTIMIZE EXISTING AUTOMATIONS IN RESPONSE TO SECURITY ALERTS AND INCIDENTS.
• BUILD AND MAINTAIN INTEGRATIONS WITH THE SOAR PLATFORM.
• CREATE CUSTOM SCRIPTS WHEN REQUIRED TO PROVIDE FUNCTIONALITY NOT SUPPORTED OUT OF THE BOX INTEGRATIONS.
• DOCUMENT PROCESSES, RUNBOOKS, AND TROUBLESHOOTING STEPS RELATED TO THE SOAR AND INTEGRATIONS.
• PROACTIVELY COORDINATE WITH ENGINEERING, SOC, AND IR SUPPORT AS NEEDED TO MEET GOALS.
• OTHER DUTIES AS NEEDED.

For applications and inquiries, contact: hirings@openkyber.com

Job Tags

Similar Jobs