SOAR Developer/Engineer

WaveStrong Logo

WaveStrong

📍Remote - United States

Summary

Join our team as a Remote SOAR Developer/Engineer and automate SOC Security Incident Response processes. You will analyze and resolve alerts from existing security tools using a single stream management system, develop and maintain custom applications for SOC workflows, and assist with process development and improvement. Responsibilities include integrating the SOAR platform with other security tools, authoring and maintaining automation scripts, designing and implementing efficient code (Python, Javascript, JSON), and resolving technical issues. You will also coordinate with system administrators, mentor team members, and contribute to process documentation. This contract opportunity requires experience in cybersecurity, SOAR platforms, and scripting languages.

Requirements

  • 2 plus years of work experience in one or more Cybersecurity focus areas such as SOC or Network Security
  • Bachelors degree in Computer Science, Information Systems, Engineering, or related field
  • Experience with SOAR platforms such as Swimlane, Phantom, XSOAR, etc…
  • Experience in security process mapping, security process analysis, security process improvement concepts, models, and best practices
  • Proficient in Python scripting
  • Working knowledge of REST APIs, JSON, HTML/CSS, Javascript, XML
  • Experience authoring SOC SOPs, playbooks, work instructions and/or other process documents
  • Experience with SIEMs, such as Splunk, XSIAM, QRadar, etc…
  • Experience with Visual Studio
  • Experience in DevSecOps environment

Responsibilities

  • Automate SOC Security Incident Response processes providing the ability to analyze and resolve alerts from existing security tools leveraging a single stream management system
  • Develop and maintain custom applications for SOC workflows
  • Assist with process development and process improvement for SOC to include creation/modification of SOPs, Playbooks, and work instructions
  • Integrate SOAR platform with other security tools and APIs to execute automated workflows
  • Author, test, and maintain automation scripts/workflows within SOAR platform
  • Design, implement, and maintain efficient and reusable Python, Javascript, and JSON code
  • Review, debug, and resolve technical issues throughout all stages of SDLC
  • Coordinate with system administrators and engineers to provision service accounts and/or grant required permissions
  • Actively mentor and train team members of the SOC processes, governance, and frameworks

Share this job:

Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.