Cyber Security Engineer

SOAR Specialist - Global Security Operations Center | Financial Enterprise | Long-Term Project

About the Team: The Global Security Operations Center (SOC) ha|s evolved over the past five years into a mature and highly automated security monitoring and incident response service. Automation (SOAR) is central to our operations, and we are continuously exploring the use of Artificial Intelligence (AI) and Machine Learning/Data Science techniques to further enhance our capabilities. As part of our ongoing efforts to refine and grow our SOAR initiatives, we are seeking a skilled SOAR Specialist to join our team and play a critical role in driving our security automation forward.

Role Overview: As a SOAR Specialist, you will be an integral member of our 28-person Global Security Operations team, focusing on executing and evolving our SOAR roadmap. You will work closely with the team to maintain and optimize the developed automation, ensuring the continued effectiveness of our operations (DevOps). Additionally, you will take a leadership role in researching and experimenting with emerging technologies, identifying innovative ways to improve SOAR and SOC performance. You will also have the opportunity to collaborate with and mentor colleagues, sharing your expertise and learning from others in the team.

Key Responsibilities:

• Lead and contribute to the execution of the SOAR roadmap within the Global Security Operations team.
• Maintain and optimize existing automation developments, ensuring high efficiency and performance (DevOps).
• Research and experiment with the latest AI, Machine Learning, and Data Science technologies to enhance SOC and SOAR capabilities.
• Share knowledge and experience with colleagues to foster a collaborative learning environment.
• Collaborate with team members and other departments to achieve security automation goals.
• Develop and implement new security automation techniques to address evolving challenges.
• Work independently while maintaining effective teamwork and contributing to shared goals.

Requirements:

• 7+ years of experience in an operational security or blue team environment.
• Strong experience with Kusto Query Language (KQL) and MS Security Suite (Sentinel).
• Proficiency in automation techniques within Azure, Sentinel (Playbooks, Logic Apps, automation rules), and the PowerApps platform.
• Security-related certifications such as SANS, OffSec, CISSP, CCSP, or equivalent are preferred.
• Excellent communication skills with a passion for knowledge sharing and mentoring colleagues.
• Ability to connect with team members and stakeholders both within and outside of the organization.
• Strong ability to work autonomously while being a collaborative team player.
• A results-driven attitude with a focus on achieving objectives and delivering outcomes.

Why Join Us?

• Be a part of a highly automated and innovative Global SOC team.
• Work in an environment that values experimentation with the latest security technologies, including AI and Machine Learning.
• Enjoy a flexible hybrid work model (1-2 days in the office, 3-4 days remote).
• Collaborate with a diverse and experienced team, continuously enhancing your skills and knowledge.

About Levy Professionals:

Since 2000, Levy Professionals has been providing professional solutions to organizations ranging from tech start-ups to global players. They have built an international and local network of skilled employed professionals and contractors, fuelled by their passion for connecting skills with projects. Over the years, they have fulfilled over 1700 requirements and consistently have 250+ professionals recruited and relocated from 14 countries allocated to various projects. Their strength lies in the way they value and treat people, a key factor in their strategy for many years to come!