|
Security Automation Engineer - Bentonville Arkansas
Company: Accenture Location: Bentonville, Arkansas
Posted On: 05/03/2024
We Are Accenture is a global collective of innovators whose aim is to improve the way the world works and lives. Empowered with innovative tools, continuous learning and a global community of diverse talent, we drive success in new business architecture that disrupts conventional practices. And we are looking to add an experienced Security Automation Engineer to an already outstanding team. Accenture Security helps organizations prepare, protect, detect, respond to, and recover, at all points of the security lifecycle. We hire the very best security talent and arm them with the coolest tools and latest tech so they can help our clients build resilience as we create integrated, customized turnkey solutions. We blend risk strategy, digital identity, cyber defense, application security and managed service solutions to rethink the entire security lifecycle. You Are Passionate about security, you love what you do and have a genuine desire to outsmart the bad guys. You have the experience to analyze a clients' security posture, anticipate security requirements and help find right-sized solutions based on industry leading practices. You have a proven track record working successfully in a fast-paced, agile environment. You're a creative, analytical problem solver with above average documentation skills who can speak to both technical and non-technical audiences. You are eager to put your skills to use by helping us help our clients inject security at every level of their organization. The successful candidate will ideally have a strong background in cybersecurity operations, technology integration, software development, and scripting. The scope includes, but is not limited to, designing automated process flows, developing automated SOC response playbooks, on-boarding security technologies into SOAR platforms, creating custom security applications, API integration, and interface development. The Work We are expanding our team to in search of an experienced cybersecurity professional to enhance our clients' SOAR capabilities across our global technology enterprise (hybrid cloud/on-premise, diverse IT and security technology baseline, etc.). Our automation efforts, such as scripting and workflow development, follow proper engineering and integration lifecycles (design, create, test, document, integrate, monitor, maintain) and are designed to be reusable. Creating and integrating APIs will enable the creation of orchestrated workflows within our client's SOAR platform. In this role you will: - Help advance security operations technologies and processes through automation and integration of threat detection and protection solutions.
- C ollaborate within an Agile development team to ensure that incremental capabilities are delivered each sprint and develop Incident Response (IR) automation scripts and reusable integrations for InfoSec technologies (e.g., Phantom, Demisto/XSOAR, Splunk, CrowdStrike, Office 365, Jira, MySQL, etc).
- Provide guidance around migrating from legacy processes (e.g., migrating from manual Microsoft 365 data pulls to automated solutions).
Travel may be required for this role. The amount of travel will vary from 0 to 100% depending on business need and client requirements Here's What you Need - Minimum of 2 years' experience working with Security Operations Centers (SOCs), Incident Response teams, Cyber Threat Intelligence functions, and other members of the cyber defense mission, and awareness of security threats and defensive strategies within the critical infrastructure, including techniques, tactics, and procedures (TTPs) that threat actors utilize to attack an organization.
- Minimum of 3 years; experience with Security Orchestration, Automation, and Response (SOAR) practices including playbook development, data and artifact collection, process automation, technology orchestration, and response actions, and basic technical knowledge and working experience with the TCP/IP stack and common IT server platforms: Windows, Linux, UNIX, SQL, IIS, Directory Services, etc.
- Minimum of 3 years; experience with one or more of the following: Splunk Phantom, Microsoft Sentinel, Cortex XSOAR, Google Chronicle (previously Siemplify), or other automation tools
- Minimum of 3 years' experience with developing scripts and integration in other development scripting and languages (e.g., Python, PowerShell, Java, JavaScript, .NET, Bash, Perl, PHP, etc.).
- Bachelor's degree or equivalent (minimum 12 years) work experience. (If Associate's Degree, must have minimum 6 years work experience)
Professional Skill Requirement - Experience communicating and presenting effectively with diverse levels of the organization including managers, users, and technical teams, with ability to explain security topics to a business audience.
- Results-oriented and self-motivated team member who enjoys working in a dynamic environment, with a proven ability to take ownership of projects and deliver them on time and within budget.
Bonus Points if you Have |
|