Ensign is hiring !Duties and Responsibilities:Own and manage playbook & automation libraryLead continuous improvement program for SOC Orchestration Automation & Response topicEngage client & other CSOC stakeholders regularly to gather new automation requirement and feedback for existing automationsDesign, Develop, Test and Deploy SOAR playbooks, automations based on client & CSOC requirementsResearch on industry innovations, trends, best practices and suggest/implement SOC automation ideasDevelop SIEM and SOAR integrations with 3rd party services/tools used by CSOC and clientsManage and troubleshoot SOAR platforms and underlying infrastructureRequirements:Experience with Python and it’s libraries related to web programmingExperience with at least one of the object-oriented programming languagesExperience in working with git and code repositories such as Gitlab, Github and AWS Code CommitWorking Experience in CI/CD technologies and processesUnderstanding of Mitre ATT&CK frameworkIn-depth Understanding of Cloud computing technologies and hands on experience with minimum one of the cloud platforms such as AWS, Azure and GCP.Ability to communicate with multiple stakeholders with clarityBasic understanding of functionality of SaaS platforms, firewalls, IPS, EDR, proxy, SIEMand Windows OSIn-depth understanding of Linux OS and related troubleshootingCurious mindset, drive to acquire new knowledge/skills/insights and apply them to solve problems.Bachelors Degree in computer engineering, Computer Science, Cyber Security, Information Security or other equivalentsPreferred Skills /QualitiesRegularly keeping up with infosec affairs, SOC automation trends and select/implement ideas that increase the value of our managed security servicesAble to install and use own mini test Lab from scratchClarity of communication, ability to listen to stakeholders and translate conversations into technical requirements.Continuous improvement mind set led approach to BAU activitiesAbility to successfully work in a thought diverse environment
