Job Information
Equifax Inc. Senior Cyber Automation Developer - J00157165 in Alpharetta, Georgia
The Senior Cyber Automation Developer will play a key role in designing, developing, and implementing automated solutions to support of the global cyber operations team. Use proven expertise to reduce Security Operation Center Key Performance Objectives through automation. Determine user requirements under prescribed guidance and establish the appropriate solutions to complex problems.
The Senior Cyber Automation Developer reports to our Cyber Automations Technical Lead and will collaborate closely with the various Security and Information Technology teams globally to ensure that they have what is needed to protect the enterprise and that best practices are implemented uniformly across the company. They will assist in the planning of team initiatives and monitoring organization performance.
To adhere to our corporate location policies, this resource will be required to be local to the surrounding Atlanta areas (or willing to relocate for this position) and adhere to our Return To Office (RTO) / weekly onsite requirements (Tuesday, Wednesday, and Thursday).
This role is currently not sponsorship eligible (will not be able to consider applicants that require sponsorship currently or in the future).
What you'll do Serve Security Operation Center analysts in automating the enrichment, execution and deduplication of security events within the SOAR platform. Mentor junior security developers in solving a wide range of technical automations. Troubleshoot complex technical issues involving alert deduplication, suppression, and indicator correlation. Work closely with Security Architecture and Engineer teams. Actively attempt to enrich team value by sharing knowledge and developing junior talent. Describe and document system process and automation gaps in new and existing security alerts and playbooks. Be available to fix and address security automation failures on as needed / on-call basis. Assist in annual platform audits.
What experience you need 7 years of experience in security automation or development work. 6 years of scripting and coding experience in Python and/or related programming languages (JavaScript, Bash, PowerShell, etc.) 4 years of experience and knowledge of tools used for network security (DLP, NIPS, WAF, HIPS, AV, Firewalls, etc.) 2 years of experience in one or more of the following areas- SIEM, EDR, analytics and/or security automation. Experience in public cloud environments (GCP and/or AWS is preferred).
What could set you apart B.S. Computer Science/Engineering or similar technical degree program Or equivalent experience in cyber security. Experience deploying or supporting enterprise security tools. Relevant security certifications a plus (such as: CISSP, GCIA, GCIH, GREM, CEH, others). Superb analytical, documentation, and communication skills. Experience developing and proposing technical solutions for complex problems. Experience in developing security playbooks/runbooks in a Security Orchestration Automation Response (SOAR) tool.
#LI-JC2
#LI-Hybrid
Equal Opportunity Employer - minorities/females/veterans/individuals with disabilities/sexual orientation/gender identity