Security Monitoring (SOAR Analyst)

Role : Security Monitoring – SOAR Support Engineer

MOI : 2 Video Rounds

Exp : 10+ Years

Location : Remote

The opportunity

The role of the SOAR Support Engineer is to ensure the effective operation of Information Security technologies, including providing operational and Level 3 support. Responsibilities include managing daily incidents, maintaining, and supporting systems, and conducting proactive analysis to prevent future issues. These technologies may be located on-premises, with vendors, or in cloud environments. The Engineer will also be responsible for coordinating upgrades, standardizing processes, and automating procedures for Information Security technologies. The position requires knowledge of ITIL service management practices, as well as managing changes, releases, and upgrades in different environments. Additionally, the Engineer will need to be available on-call and work during weekends and off-hours to ensure the systems operate smoothly.

Skills and Attributes for Success

We are seeking candidates who possess security experience in implementing and supporting solutions within a large enterprise environment.

To be considered for the position, you must have functional, technical, and delivery experience in implementing both Cloud and On-Premises SOAR technologies.

• Technical knowledge in supporting SOAR solutions within a large enterprise

o Experience working with Cortex XSOAR, Cortex XSOAR Engines

o Knowledge of data retention options within Cortex XSOAR Platform

o Knowledge of Cortex XSOAR RBAC design and configuration leveraging SAML

o Experience integrating tools with multi-Cloud solutions

o Experience developing Playbooks
o Experience deploying Cortex XSOAR Content Packs

o Experience working with various Rest-API services, such as, Microsoft Sentinel API, Microsoft Graph APIs

o Experience with Cortex XSOAR as a SaaS Solution, a plus

• Project management experience, including tracking timelines and performing tasks within project deadlines.

• Detail-oriented and organized

• Ability to enhance applications for improved performance and stability, including enhanced monitoring and automation.

• Knowledge of ITIL to drive compliance in Incident, Problem, and Change processes.

• Communicate fluently in English, both written and verbal and able to communicate technical concepts effectively

• Excellent interpersonal communication and organizational skills and the ability to work within tight timeframes
• Rapidly learn new and emerging technologies with ability to rapidly define engineering standards

To qualify for the role, you must have

• Approximately 5+ years of experience in Security, including demonstratable knowledge of SOAR technologies and working knowledge of SIEM platforms

• Several years’ experience working in a large global virtual environment and enterprise environments at scale
• Technical knowledge of Cortex XSOAR Product.

• Technical knowledge of Python Scripting Language

• Technical knowledge in Azure, Google and/or AWS Cloud services, hybrid, and on-premises security solutions including Linux and Windows Operating Systems

• Experience with Kubernetes, specifically AKS and/or GKE

• Technical knowledge of interacting with APIs and scripting tools (Ansible, PowerShell, etc.)
• Technical knowledge of SaaS, IaaS, and PaaS solutions.

• Understanding of other technologies required to run a secure, enterprise level infrastructure that adhere to security best practices

• Experience in managing a 24x7 support organization, overseeing projects and products

• Excellent time management, organizational, and decision-making skills

• Ability to design and document processes, procedures, and security designs clearly and accurately for distribution to internal teams and customers
• Demonstrated experience in dealing with external vendors and suppliers in the security industry

Regards

Pavan

Sr Technical Recruiter

(7 3 2) - - 7 9 0 - - 2 2 9 0

Pavan(.)kumar(at)primesoftinc(.)com

Job Type: Contract

Pay: $23.25 - $80.00 per hour

Work Location: Remote