SOAR Specialist

Help AG

Employer Active

Posted on 19 Nov

Experience

3 - 8 Years

Job Location

Cairo - Egypt

Education

Bachelor of Science

Nationality

Any Nationality

Gender

Not Mentioned

Vacancy

1 Vacancy

Job Description

Roles & Responsibilities

Responsibilities:

  • Integrate new logging sources and build playbooks to properly triage and respond to security incidents while reducing the time needed to analyze each event
  • Develop simple and complex playbooks and simple/custom connectors integrating with various technology
  • Deploy, configure, manage, operate, and monitor FORTISOAR in a SoC environment.
  • Identify challenges of customer security teams, and assist security teams with SOAR best practices
  • Deploy and manage FORTISOAR VM dedicated, Onprem and cloud (Multitenant)
  • Design, develop and architect FORTISOAR in the customer environment
  • Setting up dashboard, reports, incident war room, and roaster management
  • Experience in defining Jinja Filters, Functions, and Conditions
  • Support Pre-sales, Sales and Business Development of new and existing Services
  • Support the Service Transition process; Work with peers to effectively Transition Customers and Infrastructure into Operations
  • Work pro-actively and collaboratively with Peers seeking mutually beneficial outcomes
  • Support rapid and effective detection, mitigation, containment and response to Cyber Security Incidents leveraging integrations with, and capabilities of, Infrastructure Platforms, Tools, Assets under Management and non-Managed Customer Controls
  • Creation, Optimization and Documentation of processes, procedures and workflow; Tracking and Reporting of SLAs, KPIs and OLAs
  • Initiate, Support and Manage Incidents, Problems, Issues, Risks and Compliance activities; 24x7 On-call for Critical or Urgent activities as required.

Desired Candidate Profile

Qualifications & Skills:

  • Degree in Computer Science, Information Systems, Electrical Engineering or a closely related degree;
  • Depth of Skills in at least three of the following areas: Security Controls Operations, Cyber Incident Response, Cyber Security Detection, Managed Services Integration, Cyber Threat Intelligence, Threat Hunting
  • 3+ years experience in Fortinet FORTISOAR is a must
  • Experience in developing FORTISOAR connectors & playbooks.
  • Experience in integrating various technologies with SOAR platform
  • Exposure to SIEM (Splunk, Sentinel, Qradar, Securonix) systems is strongly preferred.
  • NSE 6 FortiSOAR Administrator and NSE 7 FortiSOAR Design and Development (Architect) certification exam is preferred. If you don t have certificate, you need to get the certification within 3 months of joining
  • Experience in the design, implementation, maintenance, and optimization of Playbooks for detection, protection, containment and mitigation of Cyber security related threats and incidents.
  • Strong scripting and integration skills, in languages such as Python, GO, Kusto/KQL, PowerShell.
  • Expert skills in Information Security Technologies (e.g., SIEM, NGFW, CTI, WAF) as well as IT systems, including Office 365, Service Management Tools, and the interfaces provided by IT & security systems that can be used for integration, automation and orchestration.
  • Solid experience and understanding of Managed Security Service delivery, Cyber Security concepts and standards; Demonstrated experience in effectively managing and mitigating Security Events, Threat, Attacks and Vulnerabilities
  • Understanding of classic and emerging threat actor tactics, techniques and procedures in both pre and post-exploitation phases of attack lifecycles
  • Working Knowledge of Cyber Threats, Threat Actors, TTPs and how to mitigate threats in different contexts (on-prem, cloud, distributed)
  • CISSP, CISM, CISA (or equivalent experience)
  • ITIL Accreditation (or relevant experience)
  • Customer and Team-focused attitude
  • Outstanding Organizational Skills: Ability to lead and motivate skilled security professionals
  • Solid background in Cybersecurity and understanding of Cyber Security tools, infrastructure, and systems
  • Active listener; Excellent communication, presentation, and training skills
  • Ability to interface with, and influence, Pre-Sales and Sales teams, to achieve agreed business outcomes
  • Flexible work approach, based on the job requirements.
  • Strong interpersonal skills with the ability to collaborate well with others and reconcile differences among resources/departments.

Company Industry

  • IT - Software Services

Department / Functional Area

  • IT Software

Keywords

  • SOAR Specialist

Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com

Help AG

Help AG is looking for a talented and experienced Security Orchestration & Automated Response (SOAR) Specialist who will be responsible for Orchestration and Automation of Incident Response. This role directly supports Help AG Customer engagements, working both off-site and on-site, leveraging FORTISOAR solution and their own knowledge of IT and security technologies to perform, guide and direct Customers in the value and implementation of SOAR. This role is the primary technical and operational SME for Automation, Integration and Playbook development. This role works in conjunction with the Cyber Engineering, Cyber Defense, Platforms & Architecture and Service Delivery Governance teams to deliver successful outcomes as agreed between Help AG and its Customers.

Read More

https://wuzzuf.net/jobs/p/m8lrqrbje7es-soar-specialist-help-ag-cairo-egypt