Location: Various

Primary Responsibilities:

  • Actively identity areas of improvement within the processes of the Security Operations Center and Cyber Incident Response Team with the goal of decreasing response times, increasing effectiveness, and eliminating waste, and streamlining security operations
  • Develop additional playbooks and automated controls as threats change and new security tools and controls emerge
  • Build a team to support the automation and orchestration of current manual processes
  • Develop Realtime reporting mechanisms to monitor the health of the program
  • Integrate new functionality with existing systems
  • Partner with other development and business teams to manage dependencies and communicate technical specifications


Required Qualifications:

  • Experience in security screening in a continues integration/deployment environment
  • Experience using scripting languages such as Python, Ruby, PowerShell etc…
  • Comfortable with REST API best practices and usage
  • Hands-on experience with security technologies such as SIEM, firewalls, IDS – IPS, EDR, and others

* Excellent communication skills

  • Strong analytical and critical thinking skills
  • Ability to prioritize in a fast-paced environment
  • At least 3 years in development or security functions
  • Ability to communicate to a technical and non-technical audience


Preferred Qualifications:

  • Experience in a security operations center or with security automation tools and frameworks
  • Experience in Government services industry
  • Coding – Scripting in any major language
  • Windows and Linux administration tools and concepts
  • Expertise in technologies provided by major cloud providers such as Amazon Web Services (AWS) and/or Microsoft Azure