GDS Advisory _ Threat Detection and Response Senior (Security Orchestration and Automation Response)
Ernst & Young Global Limited
Philippines
21h ago

Job title

Security Automation Engineer

Office location

Robinson’s Cyber Sigma, Mckinley

Reporting to

Maria Elizabeth de Guzman

Year of exp.

  • At least 2 years of experience in the IT Industry
  • Qualification required

    Bachelor's Degree; MCA / BTech / Bsc (Comp Science / Electronics and communication, or equivalent)

    Skills required

  • Experienced developer with at least 1 year of experience using Python programming language, REST, JSON, and API. Must have basic SQL knowledge.
  • Quick to apprehend and adopt new applications.
  • Good grasp in conceptualizing and / or implementing automation for business process workflows, most importantly in dealing cybersecurity use cases.
  • Fluency in verbal and written communication
  • Skills preferred

    Sufficient knowledge in business industry standard security incident response process, procedures, and life-cycle

    Understanding of modern network and cloud technologies

    Well-versed and / or skilled in all or some of the following Applications :

    oAutomation or Orchestration Tool (Demisto, Resilient, Blue Prism, UiPath, etc.)

    oSecurity Event and Incident Management Tools (ServiceNow, Splunk, etc)

    oPowershell

    oFTP Client tools (WinSCP, FileZilla, etc)

    on board by

    Pool / Account (Please tick)

    Is this approved by the client?

    If Yes, Name of the Client :

    Please attach the approval mail)

    Is this approved by the Director?

    If Yes, Name of the Director :

    Please attach the approval mail)

    Is this position budgeted

    Job description

    A Security Automation Engineer has the primary role of analysing and implementing cyber security use cases to be automated.

    This entails configuring connections between applications either thru web services or other network technologies, Another expectation is to support and mitigate production issues on existing automated workflows.

    One must also be comfortable in working independently.

    Implement technical configurations of different security tools involved.

    Develop automated playbooks to cater for their cyber security use cases.

    Support and mitigate production issues.

    Assess and deliver automating and orchestrating SOC / IR processes.

    Understand an existing SOC / IR process and enhance as necessary.

    Review, assess, benchmark and develop issue remediation action plans for all aspects of an engagement.

    Job title

    Security Automation Engineer

    Office location

    Robinson’s Cyber Sigma, Mckinley

    Reporting to

    Maria Elizabeth de Guzman

    Year of exp.

  • At least 2 years of experience in the IT Industry
  • Qualification required

    Bachelor's Degree; MCA / BTech / Bsc (Comp Science / Electronics and communication, or equivalent)

    Skills required

  • Experienced developer with at least 1 year of experience using Python programming language, REST, JSON, and API. Must have basic SQL knowledge.
  • Quick to apprehend and adopt new applications.
  • Good grasp in conceptualizing and / or implementing automation for business process workflows, most importantly in dealing cybersecurity use cases.
  • Fluency in verbal and written communication
  • Skills preferred

    Sufficient knowledge in business industry standard security incident response process, procedures, and life-cycle

    Understanding of modern network and cloud technologies

    Well-versed and / or skilled in all or some of the following Applications :

    oAutomation or Orchestration Tool (Demisto, Resilient, Blue Prism, UiPath, etc.)

    oSecurity Event and Incident Management Tools (ServiceNow, Splunk, etc)

    oPowershell

    oFTP Client tools (WinSCP, FileZilla, etc)

    on board by

    Pool / Account (Please tick)

    Is this approved by the client?

    If Yes, Name of the Client :

    Please attach the approval mail)

    Is this approved by the Director?

    If Yes, Name of the Director :

    Please attach the approval mail)

    Is this position budgeted

    Job description

    A Security Automation Engineer has the primary role of analysing and implementing cyber security use cases to be automated.

    This entails configuring connections between applications either thru web services or other network technologies, Another expectation is to support and mitigate production issues on existing automated workflows.

    One must also be comfortable in working independently.

    Implement technical configurations of different security tools involved.

    Develop automated playbooks to cater for their cyber security use cases.

    Support and mitigate production issues.

    Assess and deliver automating and orchestrating SOC / IR processes.

    Understand an existing SOC / IR process and enhance as necessary.

    Review, assess, benchmark and develop issue remediation action plans for all aspects of an engagement.

    Apply
    Add to favorites
    Remove from favorites
    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form