SIEM/SOAR Python Engineer

Job Description

SIEM/SOAR Python Engineer in Denver, CO or Chicago, IL preferred. Location options also include Addison, TX, and Charlotte, NC with 3 days a week onsite. Contract/contract to hire and Contract Length of 18 Months. 2 roles open. Candidates MUST have DEVELOPMENT experience with SOAR, Splunk, and Python. SOAR is a security automation tool for Splunk.

Responsibilities

• Review API documentation and connect third-party services to the SOAR platform.
• This role will be responsible for the whole lifecycle of an automation playbook, from requirements gathering and planning to design, testing, implementation, and maintenance.
• Create detailed technical documentation regarding your orchestration.
• Collaborate with other internal teams as part of setting up SOAR integrations.
• Follow all change management processes and requirements as part of setting up SOAR integrations.

Skills Requirements

• 2+ years of hands-on experience in Splunk SOAR, including writing playbooks and troubleshooting.
• 2+ years of hands-on experience using Splunk for both searching/data analysis and for passing data to SOAR.
• Strong programming skills in Python.
• Proficiency with Git.
• Experience working with REST and other third-party API integrations.
• Strong understanding of IT security concepts and practices.
• Familiarity with enterprise change management.
• Strong deductive reasoning and critical thinking skills.
• Strong organizational skills.
• Experience with Scrum or other agile development methodologies.