Security Automation & Orchestration Engineer - Dell Secureworks

Secureworks® (NASDAQ: SCWX) is a global cybersecurity leader that protects customer progress with Secureworks® Taegis™, a cloud-native security analytics platform built on 20+ years of real-world threat intelligence and research, improving customers’ ability to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.

We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available, and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.

Requirements

•5+ years of experience with scripting in one of the following scripting languages: JavaScript, Python, Perl and various shell scripting. Python strongly preferred.
•Familiar with Ansible, Groovy and YAML
•Proven background in creating automation tools, automating web based services is a plus.
•Familiarity with *nix-based command line tools.
•Solid knowledge of REST API best practices and usage.
•Strong technical communication skills, both written and verbal.
•Effective time management and organizational skills.
•Team player with the ability to work autonomously in a fast-paced, dynamic environment, often with ambiguity.
•Passionate about information security and service excellence.
•Ability to travel occasionally for client-site visits, team on-sites and strategic planning.

Responsibilities

•Perform regular updates of existing Playbooks based on changes in the Threat Landscape or a clients security controls.
•Drive continuous improvement of existing playbooks to address new threats and tactics employed by attackers.
•Manage an inventory of subtasks that enable broader playbook creation.
•Produce new playbooks as threats change and new security tools and controls emerge in the market place.
•Perform regular reporting on the usage of playbooks and the effectiveness of a playbook to conclusion.
•Develop logic that bridges connectors, tasks and human input to accelerate the response to escalated security incidents.
•Develop connectors that collect enrich and leverage data from third party and proprietary webservices.
•Participate in client meetings to further optimize their specific operational plan based on our best practices and operational learnings.

Secureworks, a Dell Technologies company, is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Secureworks are based on business needs, job requirements and individual qualifications, without regard to race, colour, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Secureworks will not tolerate discrimination or harassment based on any of these characteristics.