Interested in joining us on our mission for a safer digital world? View our available positions below.
Position: SOAR Security Engineer RoleType: Remote Location: India & Nepal Join StickmanCyber: Pioneers in Cybersecurity as a Service and AI driven Cybersecurity Platform
At StickmanCyber, our mission is more than a commitment – it's a guiding light: "We do everything in our power to protect our customers from cyber threats"
Established in 2006, we've carved a niche in the cybersecurity landscape, demonstrating a remarkable business growth. Our success story is built on a foundation of trust and commitment that the staff at SitckmanCyber have created with our clientele, which includes several prestigious public listed companies.
We have:
No Investors, No Debt, No Greed
No Inflated Valuations, No Unrealistic Targets
Just Pure, Uncomplicated Commitment
We are accountable only to our staff and clients. This unique focus sets us apart.
We're not just running a business; we're nurturing a philosophy. Every day, we're committed to ensuring the security of our customers and the welfare of our staff. Growth is not our primary goal; our aim is to maintain fairness in pricing, pay our staff well, and reinvest profits for our staff training, new technology, innovations that is targeted for our customers' success.
We pride ourselves on being the trailblazers in the Cybersecurity as a Service (CSaaS) domain, a testament to our innovative spirit and commitment to excellence. Our business model not only generates robust recurring revenue but also ensures profitability, showcasing our operational strength and market resilience.
Our most ambitious project yet is the development of an industry-first AI-based Cybersecurity platform. This cutting-edge technology is a game-changer, poised to revolutionize how we safeguard businesses from cyber threats. By joining our team, you'll be at the forefront of this exciting venture, leveraging AI to enhance our capabilities and deliver unparalleled protection to our clients.
We're looking for passionate individuals who are eager to contribute to a larger global cybersecurity product/platform company. If you're driven by innovation, excellence, and a desire to make a significant impact in the cybersecurity world, StickmanCyber is your destination.
Summary:
Stickman is looking for a SOAR engineer with a technical and operational background for our 24x7 Security Operations Center (SOC)/SOAR team, in Bangalore.
The right candidate must have sufficient technical experience in cybersecurity and security incident management investigations and incidents, and SOAR engineering. As the SOAR engineer, you will be assisting our analysts with daily investigations, evaluation for emerging compromises and vulnerabilities and helping to develop advanced use cases and playbooks that can be used to detect active or attempted compromise on our client's information systems and automate responses.
You are expected to identify ways to positively impact team performance and encourage innovation, while displaying a positive customer service attitude to our partners and clients. Finally, you are required to review current SOAR engineering practice and processes.
Responsibilities
Manage and execute Security Operations projects, including process improvement and technology investments.
Manage or approve the creation and maintenance of security alerts, reports, dashboards, and metrics for the security operations center and their presentation to clients.
Provide L3 technical and functional guidance to the team members regarding event monitoring and incident analysis and response.
Provide regular coaching, mentoring and ensuring staff are cross trained on the various tools.
Act as the escalation point for all security incidents that require attention and timely response
Knowledge on SIEM (Security Incident & Event Monitoring) solutions including,
Agents' configuration, installation, migration, updating and monitoring on different platforms.
Develop / maintain the Siemplify SOAR playbooks, processes and automation.
Manage security production issues and incidents, and participate in problem and change management forums along with client stakeholders
Effectively communicate successes and progress of the SOAR platform to the management team.
Proficiently managing and optimizing the Security Orchestration, Automation, and Response (SOAR) platform to enhance incident response capabilities and streamline security operations at an advanced level.
Requirements
4-6 years of total experience including implementing and working in a Security Operations Centre (SOC).
Demonstrated experience managing a L1/L2 SOC analyst team.
Experience with creation, documentation, and implementation of security operation policies, procedures and best practices
Demonstrated experience with SOC monitoring, incident response & resolution.
Demonstrated technical knowledge in cyber security, SIEM tools, ticketing systems,
Strong technical knowledge in firewalls, IDS/IPS and VPN.
Strong understanding of TCP/IP and other network protocols.
Strong understanding of Mitre Attack tactics and techniques.
Strong communication skills both written and oral, interpersonal and teamwork skills.
Desired - hands-on experience of using other security tools such as NMAP, WireShark, OpenVAS, Snort, OS-SIM, Kibana and Elasticsearch.
Desired - a good understanding and experience of cloud-based technologies such as AWS and Azure.
Demonstrated experience on SOAR platform, automation and python programming language.
Required - Bachelor's/Master's Degree/Certifications in Computer Science, Cyber Security, Networking, IT infrastructure.
#J-18808-Ljbffr
