Cyber Security Specialist L4 - Security Automation (Remote)

Job Description

Summary:

As a member of the Cyber Security Risk Management team, the Security Automation Specialist will be pivotal in developing, implementing, and managing security automation solutions to bolster the organization's defense mechanisms. This role involves leveraging SOAR (Security Orchestration, Automation, and Response) platforms, scripting with Python, and utilizing SQL for data manipulation, along with advanced data visualization tools like Google Looker Studio and BigQuery. The Specialist will function within the existing security operations framework as a specialist in automation, tasked with designing and enhancing automation workflows that streamline security processes and improve threat response times. Key responsibilities include the creation of automated scripts and workflows, the integration of security tools with various APIs, and the generation of comprehensive security reports. The Security Automation Specialist will collaborate closely with other security and IT professionals to develop strategies for the automated reporting and remediation of security incidents across all systems and platforms within the enterprise.

Essential Duties and Responsibilities:

• Design, develop, and implement automation scripts and workflows using SOAR (Security Orchestration, Automation, and Response) platforms.

• Utilize Python and other scripting languages for scripting and automation of routine tasks across various security domains.

• Develop SQL queries and scripts to manipulate and analyze data efficiently.

• Leverage Google Looker Studio and BigQuery for creating actionable insights through data visualization and reporting.

• Integrate security tools with various APIs to streamline processes and enhance data flow.

• Conduct continuous testing and improvement of automation scripts and security solutions.

• Collaborate with cross-functional teams to identify automation opportunities and implement scalable solutions.

• Stay updated with the latest security practices, tools, and technologies to continuously refine and enhance automation strategies.

• Document and maintain the configuration and procedures related to automation and security systems.

Qualifications:

• Required Education: High School diploma

• Preferred Education: Bachelor's or Master's Degree in Cyber Security, Computer Science, Information Systems (or other related field), or equivalent work experience.

• Required Experience:

• Duration:

• 5+ years of IT or information security, and

• 3+ years of automation and orchestration

• Activities:

• Practical experience with security automation, programming, and data analysis.

• Served as expert thought leader for security automation technologies and

• Worked in process-driven structured environments and participated in process optimization activities.

• Competencies:

• Strong expertise in Python, SQL, and experience with SOAR platforms.

• Familiarity with Google Looker Studio, BigQuery, and other data visualization tools.

• Solid understanding of cybersecurity principles, practices, and solutions.

• Proven experience in security automation, programming, and data analysis.

• In-depth knowledge of automation tools, techniques, and best practices.

• In-depth knowledge of data visualization tools, techniques, and best practices.

• Familiarity with industry frameworks and standards such as NIST, CIS, and CVSS.

• Excellent analytical and problem-solving skills, with the ability to prioritize and address automation and data requests based on business needs.

• Strong communication and collaboration skills to work effectively with cross-functional teams.

• Relevant certifications such as CISSP, CISA, or GIAC certifications are a plus.

• Commitment to continuous learning and staying updated on the latest trends and advancements in the field of security automation.

• Effective communication of technical concepts to a non-technical audience

• Excellent written and verbal communication skills

• Preferred Experience: 5+ years of security automation and/or data visualization

• Required License/Registration/Certification: None

• Preferred License/Registration/Certification:

• SANS Certifications

• GIAC Certifications

• EC Council CEH

• Computer Skills:

• Productivity suite software required

• Python, Powershell, Microsoft SQL, industry standard automation software, and various other cybersecurity tools preferred

Physical Demands:

In order to successfully perform this job, with or without a reasonable accommodation, the following are outlined below:

• The Employee is required to read, review, prepare and analyze written data and figures, using a PC or similar, and should possess visual acuity.

• The Employee may be required to occasionally climb, push, stand, walk, reach, grasp, kneel, stoop, and/or perform repetitive motions.

• The Employee is not substantially exposed to adverse environmental conditions and; therefore, job functions are typically performed under conditions such as those found within general office or administrative work.