The Security Automation and Response Engineer will be part of an elite team of Cyber Security specialists whose mission is to proactively test enterprise information security controls for effectiveness and to coordinate manual or automated remediation of weaknesses and gaps in the detection, prevention and response to cyber attacks.

This member of the Security Assurance team is responsible for building and/or operating systems that analyze multiple data streams to detect and automatically respond to emerging or active threats. The long term goal for this team member is to make the response system autonomous.

• Security Operations, Automation and Response (SOAR) system acquisition, implementation and administration
• Work across Infrastructure and Development organizations to automate detection and response to active threats
• Analyze and prioritize inputs from other Security Assurance team members to build safe, automated responses to weaknesses in the current operating environment
• Analyze and prioritize threat intelligence sources to build safe, automated responses to vulnerabilities that are being actively exploited
• Research and develop Deep Learning (AI) and Reactive Machine Learning models for autonomous threat detection and response
• Work with other Security Assurance team members to automate security control testing

Required:

• Bachelor’s Degree in IT, CyberSecurity or Equivalent Experience
• 10+ Years Cyber Security Experience
• 5+ Years Programming or Non-Trivial Scripting Experience

Preferred: 

• Vendor Specific Certification in a SIEM or SOAR Technology
• CISSP Certification

Technical Skills:

• Practical experience vetting and implementing Security Operations and Response (SOAR) systems
• Extensive experience with one or more IT Automation frameworks (Ansible, Terraform, etc)
• Extensive experience with Splunk, Splunk Enterprise Security and Splunk SOAR
• Familiarity with Machine Learning and Artificial Intelligence concepts
• Software Development and Scripting Experience
• Familiarity with one or more Security Information and Event Management Systems (Splunk Enterprise Security, IBM QRadar, etc)
• Familiarity with the MITRE ATT&CK and DEFEND Frameworks
• An extensive understanding of modern security controls

#AmTrust

#LI-ONSITE

#LI-JJ1

AmTrust Financial Services offers a competitive compensation package and excellent career advancement opportunities. Our benefits include: Medical & Dental Plans, Life Insurance, including eligible spouses & children, Health Care Flexible Spending, Dependent Care, 401k Savings Plans, Paid Time Off.

AmTrust strives to create a diverse and inclusive culture where thoughts and ideas of all employees are appreciated and respected. This concept encompasses but is not limited to human differences with regard to race, ethnicity, gender, sexual orientation, culture, religion or disabilities.

AmTrust values excellence and recognizes that by embracing the diverse backgrounds, skills, and perspectives of its workforce, it will sustain a competitive advantage and remain an employer of choice. Diversity is a business imperative, enabling us to attract, retain and develop the best talent available. We see diversity as more than just policies and practices. It is an integral part of who we are as a company, how we operate and how we see our future.