SOAR Developer
Malaysia
Ensign InfoSecurity
Ensign InfoSecurity is Asia's premier cybersecurity provider. Our Threat-informed Defence approach offers tailored insights on regional cyber risks.Ensign is hiring !
Duties and Responsibilities:
Own and manage playbook & automation library
Lead continuous improvement program for SOC Orchestration Automation & Response topic
Engage client & other CSOC stakeholders regularly to gather new automation requirement and feedback for existing automations
Design, Develop, Test and Deploy SOAR playbooks, automations based on client & CSOC requirements
Research on industry innovations, trends, best practices and suggest/implement SOC automation ideas
Develop SIEM and SOAR integrations with 3rd party services/tools used by CSOC and clients
Manage and troubleshoot SOAR platforms and underlying infrastructure
Requirements:
Experience with Python and it’s libraries related to web programming
Experience with at least one of the object-oriented programming languages
Experience in working with git and code repositories such as Gitlab, Github and AWS Code Commit
Working Experience in CI/CD technologies and processes
Understanding of Mitre ATT&CK framework
In-depth Understanding of Cloud computing technologies and hands on experience with minimum one of the cloud platforms such as AWS, Azure and GCP.
Ability to communicate with multiple stakeholders with clarity
Basic understanding of functionality of SaaS platforms, firewalls, IPS, EDR, proxy, SIEM
and Windows OS
In-depth understanding of Linux OS and related troubleshooting
Curious mindset, drive to acquire new knowledge/skills/insights and apply them to solve problems.
Bachelors Degree in computer engineering, Computer Science, Cyber Security, Information Security or other equivalents
Preferred Skills /Qualities
Regularly keeping up with infosec affairs, SOC automation trends and select/implement ideas that increase the value of our managed security services
Able to install and use own mini test Lab from scratch
Clarity of communication, ability to listen to stakeholders and translate conversations into technical requirements.
Continuous improvement mind set led approach to BAU activities
Ability to successfully work in a thought diverse environment
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Azure CI/CD Cloud Computer Science CSOC EDR Firewalls GCP GitHub GitLab IPS Linux MITRE ATT&CK Python SaaS SIEM SOAR SOC Windows
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Security Operations Engineer jobs
- Open Cloud Security Architect jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Product Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Information System Security Officer (ISSO) jobs
- Open Senior Information Security Engineer jobs
- Open Information Security Architect jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open Threat intelligence-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs