Data Automation Engineer (Cyber Data)
Description:
Job Description
We are actively seeking a talented and experienced Data Automation Engineer (Cyber Security Systems) to join our team in supporting our customer's Division level Authorization and Accreditation (A&A) projects. The ideal candidate will have a minimum of 16 years of experience and will play a crucial role in identifying threats, engineering solutions, and autonomously responding to cybersecurity incidents.
This position requires a strong background in incident response, programming, scripting, and experience with Splunk and Splunk Enterprise Security or comparable SIEM products.
Responsibilities:
Work within an incident response organization to identify threats and engineer solutions for autonomous threat detection and response.
Utilize programming skills in C# and scripting abilities in bash/Python/PowerCLI to develop automated solutions.
Operate and maintain Splunk SOAR in accordance with government security controls and operational uptime requirements.
Integrate Splunk SOAR with existing sponsor toolsets and infrastructure, including Cloud Services, ServiceNow, Tanium, Trellix, Active Directory, Network Infrastructure, and Splunk Enterprise.
Collaborate with cross-functional teams to plan and prioritize multiple tasks, ensuring timely and effective response to cybersecurity incidents.
Administer Cisco network environments and conduct penetration testing as needed.
Requirements
Bachelor’s degree in Computer Science, Cybersecurity, or similar field; or Certified Information Systems Security Professional (CISSP).
6 or more years of experience in incident response, threat identification, and engineering solutions.
Proficiency in programming languages such as C# and scripting languages like bash, Python, and PowerCLI.
Experience with Splunk and Splunk Enterprise Security or comparable SIEM products.
Strong problem-solving skills and ability to work independently and in team environments.
Preferred Education, Experience, & Skills:
Certified Ethical Hacker (CEH) or CompTIA Security+ certifications.
Experience administering Cisco network environments.
Knowledge of penetration testing methodologies.
If you are a proactive and skilled Data Automation Engineer with a passion for cybersecurity, we encourage you to apply and join us in our mission to protect our customers from cyber threats.