Int. Security Automation Engineer with XSOAR and/or XSIAM and Python to develop playbooks, automate detection engineering, and implement custom integration
Duration: 1 Year Location: Hybrid - 4 days/week onsite in Brampton Responsibilities: Develop & Maintain Automation Playbooks: Design, develop, and maintain automated playbooks on the XSOAR & XSIAM platform to streamline security operations and incident response processes.
Detection Engineering: Familiarity with building automated detection and response workflows using SOAR platforms to enhance threat detection capabilities. Custom Integrations: Create and implement custom integrations with a wide range of third-party security tools and technologies (SIEMs, firewalls, threat intelligence platforms, etc.). Write Python Code: Utilize Python scripting to build, customize, and enhance automation workflows, ensuring smooth integration between various security controls.
API Integrations: Leverage APIs and SDKs to integrate with internal and external systems, enabling seamless data exchange and improving operational efficiency. Collaboration: Work alongside cross-functional teams, including cybersecurity analysts, engineers, SOC and other stakeholders, to understand automation requirements and improve security response processes.Must Have Skills: 4+ Years in Information Security , focused on Automation/SOAR Hands-on experience with XSOAR /Demisto/Phantom/Swimlane or D3 Security - including a utomation playbook development. Experience building automated detection and response workflows using SOAR Platforms.
Strong Python programming for automation, integration, and custom code development. Nice to Have: Relevant Certifications including: Cortex XSOAR Certified Developer Palo Alto Networks Cortex XSOAR Certified Automation Engineer (XSOAR-CE) CompTIA Security+ or CEH or CISSP Apply