Remote But not allowed in the following States: Alaska, North Dakota, Nebraska, Hawaii, Oklahoma, Vermont, Maine, West Virginia, Wyoming, New Hampshire, Puerto Rico.
We are unable to sponsor as this is a permanent Full time role
A prestigious company is looking for an Expert Cyber Defense Engineer. This engineer will focus on SOAR detection engineering, SIEM, incident Response, Cyber defense, Automation (Python), threat analysis etc.
Responsibilities
- Solution Engineering: design develop, and deploy cyber defense tools, platforms, and capabilities that support threat detection, incident response, and forensic investigations.
- Technical Leadership: serve as a subject matter expert on cyber defense engineering, providing guidance and technical insights to our customers, your peers, and the cyber engineering strategy.
- Threat Analysis: collaborate with cyber defense operations to analyze emerging threats and current gaps in technical capabilities, implementing measures to strengthen defense mechanisms.
- Develop and refine threat defense analytics to effectively detect cyber-attacks against DDC.
- Build task automation and procedure orchestration to support cyber defense operations.
- Innovation & Continuous Improvement: stay abreast of the latest trends and technologies in cybersecurity, applying best practices to continuously enhance our defense strategies and capabilities.
- Documentation: maintain accurate procedures and documentation for all capabilities and services in scope for the Platforms & Automation team.
- On-Call: support cyber defense capability availability incidents and support the cyber defense operations team while hands-on experience with our investigation process to identify automation opportunities.
Qualifications
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Relevant experience and relevant experience within the military is acceptable in lieu of a degree.
- 8+ years of experience in one or more of the following areas: cybersecurity engineering, detection engineering, incident response, or a similar role, with a proven track record of independent problem solving in high-stakes environments.
- Significant experience using Python for task automation, procedure orchestration, and capability development.
- Hands-on experience deploying and configuring security platforms, such as SIEM, SOAR, EDR, NGFW, and network monitoring tools.
- Experience integrating cyber defense tools and utilizing APIs for process orchestration and task automation.
- Experience building and deploying threat defense (SIEM) analytics using a detection engineering pipeline.
- Strong technical writing skills including documentation development, process mapping, and visualization, with the ability to translate complex technical concepts for a variety of technical audiences.