TC-CS-CDR-SOAR Analyst – Manager

This is a fully remote position, open to applicants in India.

📋 Description

• Become a part of EY and contribute to the creation of a better working world.

• Position: Threat Detection & Response Consulting - Security Orchestration, Automation and Response (SOAR) - Manager.

• Collaborate with clients to determine security automation strategies and develop innovative integrations and playbooks.

• Work in tandem with team members to devise imaginative and practical solutions to address customers’ challenges and requirements.

• Proficient in the design and implementation of SOAR solutions, such as Phantom (preferred), Demisto, or Resilient.

• Accountable for executing and maintaining SOAR-related analytical processes and tasks.

• Manage and administer SOAR platforms effectively.

• Hands-on experience with Incident Response and Threat Intelligence tools is essential.

• Develop reusable and efficient Python-based Playbooks.

• Utilize the Phantom platform to facilitate automation and orchestration across various tools and technologies through existing or custom integrations.

• Collaborate with security operations teams, threat intelligence groups, and incident responders.

• Aid in the creation of high-quality technical content, including automation scripts/tools, reference architectures, and white papers.

• Familiarity with network monitoring technology platforms, such as Fidelis XPS or others.

• Understanding of endpoint protection tools, techniques, and platforms, including Carbon Black, Tanium, Microsoft Defender ATP, Symantec, McAfee, or others.

⛳️ Requirements

• A minimum of 7-9 years of experience in cybersecurity with extensive knowledge of network architecture.

• Strong oral, written, and listening skills are vital for effective consulting.

• Solid background in network administration.

• Ability to work across all layers of the OSI model, including the capability to explain communication at any level.

• Knowledge of Vulnerability Management, basic Windows setup, Windows Domains, trusts, GPOs, server roles, Windows security policies, basic Linux setup, user administration, Linux security, and troubleshooting is necessary.

• Should possess strong hands-on experience with scripting technologies such as Python, REST, JSON, SOAP, ODBC, XML, etc.

• Must hold an honors degree in a technical field such as computer science, mathematics, engineering, or a related discipline.

• At least 5 years of experience working with SOAR.

• Certification in at least one SIEM solution, such as IBM QRadar, Exabeam, Securonix, or Splunk, will be advantageous.

• Certifications in a core security-related discipline will be considered a plus.

🏝️ Benefits

• Competitive salary and performance-based bonuses.

• Opportunities for professional development and training.

• Comprehensive health, dental, and retirement benefits.

• Flexible work arrangements and work-life balance support.