Demo
Careers
Security Orchestration Automation and Response (SOAR) Developer
Talion are looking for a SOAR Developer to join our enthusiastic and experienced Security team. We are after someone who has a passion for combatting cyber threats by developing playbook solutions and improving our toolsets to enable this. You will have a technical and ideally content development background and awareness of cyber threats to assist our Security Analysts and thus protect our clients.
Location: 
Leeds
Department: 
Date Posted: 
18th March 2021
Deadline: 
31st May 2021

Reporting line

Lead Principal Analyst

Who is Talion?

At Talion, we’re changing the way organisations interact with their Managed Security Service Provider.  Born out of BAE Systems, our service is built on first-hand knowledge of military engineering and defence-grade security, together with an in-depth understanding of the threat landscape facing the commercial world today.

When it comes to cyber security, we believe every organisation deserves full visibility and complete control over how threats are monitored, how decisions are made, and how their business is protected. That’s why we prioritise transparency and collaboration across our service lines, implementing security programs that give businesses the control and freedom to pursue ambitions and realise goals, safe in the knowledge that we’ve got their back, 24 hours a day, 7 days a week.

Role Description

Talion are looking for a SOAR Developer to join our enthusiastic and experienced Security team. We are after someone who has a passion for combatting cyber threats by developing playbook solutions and improving our toolsets to enable this. You will have a technical and ideally content development background and awareness of cyber threats to assist our Security Analysts and thus protect our clients.

This role will enable the individual to be at the cutting edge of the development of our market leading SOAR solution, learning new skills and gaining certifications that are recognised and respected across the industry.

The appointee will report into the Lead Principal Analyst and work closely alongside the Principal Analyst team, with a view to being moved into the SOC’s Content team in the medium term. This role is key in delivering the future products and services that Talion will be offering, and is an excellent opportunity to specialise and progress in the field.

We are looking for an individual who wants that next challenge in their career. We want someone with enthusiasm and able to challenge senior management with ideas and a strategic vision.

You should possess a unique blend of technical and operational security awareness and have a strong desire to innovate and a be able to assist in creating strategies to deliver on the vision that we have for Talion. The role will be key in delivering extra content and efficiencies into our SOAR platform, so a close working relationship with our in-house Rules and Content team will be key.

Specific Accountabilities and Responsibilities

  • Shall create and maintain SOAR Playbooks and custom content
  • Suggesting and implementing technical improvements to the platform
  • Liaise with our solution provider on a regular basis to assist with system improvements and updates
  • Create documentation and process designs relevant to the Orchestration platform and projects
  • Implement future integrations to support improvements to the Security Analysts and triage process
  • Assist with training on the orchestration platform and internal demonstrations of its capabilities
  • Create new users in the platform and assist with onboarding new customers
  • Identify improvements and possible automation of our security solutions where feasible for placement on Product and Service development roadmaps
  • Assist the Leadership team in the development of partnerships with vendors

Qualifications and Requirements

Essential

  • Extensive experience of a SOAR platform including tools, scripts, events and playbooks.
  • Experience with SIEM platforms and/or Managed Security Service Provider (MSSP) service stacks
  • Strong desire to learn new techniques and technologies
  • The ability to be self-sufficient in problem solving
  • Must possess strong analytical, problem solving and documentation skills
  • Ability to work under pressure, and to prioritize tasks accordingly
  • Considerable experience of using Python
  • Must demonstrate strong oral and written communication skills, with the ability to communicate technical topics to management and non-technical audiences
  • Comprehensive understanding of the fundamentals of cyber security
  • Must be able to collaborate effectively with other teams

Desirable Experience

  • Experience in trouble-shooting complex systems
  • An education background in Cyber Security or security qualified in CISSP or CISM
  • Experience of working within a Security Operations Centre
  • Technical certifications with security or network products
 
Apply for this position


    Other vacancies