Security Orchestration and Automation Engineer at TransUnion
What We'll BringAt TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation. We’re consistently exploring new technologies and tools. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius.
Come be a part of our team – you’ll work with great people, pioneering products, and deploy cutting-edge technology.
What You'll Bring3 + years experience developing automation tools
Hands on experience with backend scripting languages (e.g. Perl, Python, Ruby, etc.)
Experience in Unix/Linux administration and shell scripting
Experience with log data aggregation solutions (e.g. Elk, Kafka, Splunk, Exabeam, etc.)
Previous exposure to networking architecture coupled with an understanding of networking fundamentals
Familiarization with SOAR platforms (e.g. Demisto, Phantom, Resilient, Swimlane, etc.)
Experience deploying and integrating security technologies
Experience deploying and managing cloud environments
Ability to work independently and collaborate with a team
Strong communication skills
We'd Love To See
Familiarization with AGILE development
Experience with configuration management systems (e.g. Ansible, Puppet, Salt, etc.)
Experience with cloud infrastructure providers (e.g. AWS, Azure, etc.)
Experience in Windows administration and PowerShell
Impact You'll MakeAs the Security Orchestration and Automation Engineer, you will be responsible for developing systems to support our Security teams. You will play a key role in designing, developing, and implementing processed to address security automation needs. As the Security Orchestration and Automation Engineer, you will be responsible for developing system integrations and automating processes to support our Cyber Security teams.
Work with Incident Response teams on developing and managing the backlog of needed orchestration and automation requests
Work with Incident Response teams to develop correlation rules and corresponding incident response workflows/playbooks
Work with security teams and product owners to develop automation processes and resolve technical issues with core technology
Provide ongoing knowledge transfer and training of the selected SOAR solution