Security Orchestration, Automation and Response Apply
- Incident response experience and prior experience actively participating in the containment of incidents
- Experience in python/JavaScript
- Knowledge of Demisto Security Orchestration Platform
- Develop accepted and defined playbooks
- Develop basic customs scripts as part of playbooks or workflow
- Understanding of Demisto UI Configurable components
- Understanding of Using the integrations
- Experience with handling analysis/monitoring using any SIEM or in SOC.
- Knowledge and Experience in any Automation is a plus.
- Experience in any security function and knowledge of various security technologies and domains.
- Knowledge of API's, JSON and Linux administration
- Experience providing technical expertise regarding the defense of company information systems and networks
- Knowledge of initiating computer incident handling procedures to isolate and investigate potential network information system compromises
- Knowledge performing malware and/or forensic analysis as part of the incident management process
- Experience identifying risks to computer systems and making written and verbal remediation recommendations to leadership
- Experience supporting incident escalation, assessing probable damages, identifying damage control and remediation, and assisting in developing courses of action
- Experience assisting with the implementation of counter-measures or mitigating controls
- Typical Years of Experience: 6+ years of corporate IT Security experience
Minimum Education or Certification: 4-year Degree related to IT
