SOAR Engineer

Abu Dhabi, United Arab Emirates | Posted on 08/13/2024CyberGate Defense, an IHC company, is a leading force in cybersecurity innovation, dedicated to enhancing the digital resilience of organizations across the region. Established with the mission to fortify the region’s cybersecurity landscape, CyberGate harnesses extensive expertise to tackle complex information security and operational challenges.Our commitment to driving progress is reflected in our broad range of cybersecurity services and solutions. By leveraging cutting-edge, disruptive technologies, we deliver transformative, human-centric security solutions that safeguard organizations and empower them to navigate a secure and dynamic digital future.With a wealth of in-house knowledge, CyberGate Defense is well-equipped to address the most intricate cybersecurity issues. We strive to make digital transformation secure, accessible, and beneficial, ensuring that organizations throughout the region thrive in an increasingly interconnected digital world.Job DescriptionDesign and Implement SOAR Solutions: Deploy SOAR solutions to automate and enhance security operations workflows, focusing on increasing efficiency and operational effectiveness.Develop and Maintain Scripts: Create, refine, and maintain custom scripts to automate routine tasks and enhance incident response capabilities, ensuring scripts are optimized for performance and reliability.Design and Optimize Workflows: Develop and design detailed SOAR workflows and playbooks to streamline security processes, adapting them to address evolving security threats and operational needs.Integrate Security Tools: Seamlessly integrate various security tools and systems—such as SIEM, EDR, and firewalls—with the SOAR platform to ensure effective data flow and interoperability.Collaborate with SOC Team: Work closely with the SOC team to identify automation opportunities and design workflows that enhance response capabilities and address security challenges.Troubleshoot and Resolve Issues: Diagnose and resolve issues related to SOAR platform integrations and automation scripts to ensure smooth and uninterrupted operation.Review and Update Playbooks: Regularly review and update SOAR playbooks and workflows to ensure they align with the latest threat landscapes and organizational requirements.Provide Training and Support: Offer training and support to SOC analysts on SOAR platform features, with a focus on scripting and workflow design, to ensure effective utilization and adoption.Requirementsat least 3+ years of experience in cybersecurity, with a focus on incident response and automation.Hands-on experience with any SOAR platform.Proficiency in scripting languages such as Python, PowerShell, or Bash.Strong understanding of security operations, threat intelligence, and incident response processes.Excellent problem-solving skills and attention to detail.Strong communication and collaboration skills#J-18808-Ljbffr