Our Engineering team built the world’s largest cloud security platform from the ground up, and we keep building. With more than 100 patents and big plans for enhancing services and increasing our global footprint, the team has made us and our multitenant architecture today's cloud security leader, with more than 15 million users in 185 countries. Bring your vision and passion to our team of cloud architects, software engineers, security experts, and more who are enabling organizations worldwide to harness speed and agility with a cloud-first strategy.
We are looking for a Sr. Staff Security Automation Engineer with expertise in automation development and security engineering to directly support the Security Operations Center (SOC). The ideal candidate will have experience in developing automation frameworks in direct support of security monitoring with a strong understanding of security principles, threat analysis, and incident response. As a Security Automation Engineer, you will design, develop, and implement automation frameworks, applications, and workflows to enhance our security posture, streamline security operations, and improve incident response. You will be an Individual Contributor Reporting to the SOC Manager, you'll be responsible for:
- Design, develop, and implement automation solutions using Python to enhance security operations, incident response, and threat analysis.
- Collaborate with the SOC to identify areas for automation and develop solutions to improve security efficiency and effectiveness.
- Develop and maintain scripts, tools, and integrations to automate security tasks, such as threat hunting, vulnerability management, and compliance monitoring.
- Develop and maintain dashboards, reports, and visualizations using Elasticsearch and other technologies to provide insights into security operations and incident response.
- Assist with log collection, correlation, and health monitoring to directly support the security operations.
What We're Looking for (Minimum Qualifications)
- 8+ years of experience in programming skills, security automation, security engineering, or a related field.
- 3+ years of experience with infrastructure, particularly Elastic SIEM
- Strong programming skills in Python, including experience with Python libraries such as requests, paramiko, and pandas.
- Experience with infrastructure management, including CI/CD deployment pipelines.
- Experience with cloud platforms such as AWS, Google Cloud, or Azure.
What Will Make You Stand Out (Preferred Qualifications)
- Experience with containerization technologies such as Docker.
- Experience with orchestration technologies such as Kubernetes.
- Experience with security information and event management (SIEM) systems.
#LI-Remote
#LI-RM6