Talent Specialist Contact Information
Lavanya | 224-369-0873
Title: Python Developer with Cortex XSOAR
Location: Remote.
Candidates must be willing to travel to the client site (Abbott Park, IL) on an occasional basis; the client will pay expenses.
Job Description
We are looking for a talented and experienced automation developer who can leverage XSOAR, Python, and Splunk to create, maintain, and enhance our cybersecurity solutions. You will be working with a team of analysts, engineers, and architects to design, develop, and deploy automation workflows, scripts, and dashboards that improve our efficiency, effectiveness, and security posture.
Responsibilities
- Pull AD data into XSOAR playbook and support process automation through complex calls into Splunk tables.
- Integrate Splunk with XSOAR for efficiency, i.e., reduce manual steps/workflows.
- Lead Knowledge Transfer sessions on general XSOAR development best practices.
Qualifications
- Bachelor's degree in Computer Science/Cybersecurity, Engineering, or related field, or equivalent work experience
- At least 3 years of experience in automation development using XSOAR, Python, and Splunk
- Strong knowledge of cybersecurity concepts, principles, and practices
- Proficient in Palo Alto Cortex XSOAR platform, Python programming, and Splunk query language
- Familiar with RESTful APIs, JSON, XML, and other data formats
- Experience with version control, testing, and debugging tools.
- Excellent communication, collaboration, and problem-solving skills
- Certifications in XSOAR, Python, and Splunk are preferred.
Brief Scope of Work:
- Utilizing Python or other coding languages to pull data from Active Directory into XSOAR playbooks.
- Related to a, utilizing XSOAR to utilize complex calls into Splunk tables for data enrichment to support process automation
- Integrating Splunk into XSOAR by deduplicating XSOAR raised alerts within a 72-hour period
- XSOAR threat intel enrichments to reduce manual workflows and increase analyst bandwidth
- Mentoring/shadowing engineers/staff Abbott on general XSOAR development best practices
Expected Deliverables:
- All source code for the in-scope activities as referenced in 2.1 configured for operation in Abbotts XSOAR development environment
- Documentation, including step by step screenshots, to support internal processes which utilize the product of the XSOAR development work above
About us:
DivIHN, the 'IT Asset Performance Services' organization, provides Professional Consulting, Custom Projects, and Professional Resource Augmentation services to clients in the Mid-West and beyond. The strategic characteristics of the organization are Standardization, Specialization, and Collaboration.
DivIHN is an equal opportunity employer. DivIHN does not and shall not discriminate against any employee or qualified applicant on the basis of race, color, religion (creed), gender, gender expression, age, national origin (ancestry), disability, marital status, sexual orientation, or military status.