Expert Cyber Defense Engineer - Python

This range is provided by Request Technology. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

$200,000.00/yr - $250,000.00/yr

NO SPONSORSHIP

EXPERT CYBER DEFENSE ENGINEER

Looking for a candidate with complicated Python scripting experience. Automating work using APIs and custom code, investigating cyber security alerts, investigation experience, detection engineering, xSOAR.

In this position, you will architect, develop, and implement advanced technical solutions that empower our cyber defense investigations and incident response teams. You will work independently and in teams to design and implement effective and sustainable capabilities to detect and prevent cyber-attacks, optimize our incident response processes, and enhance the effectiveness of mitigation, containment, and recovery.

Responsibilities

• Solution Engineering: design, develop, and deploy cyber defense tools, platforms, and capabilities that support threat detection, incident response, and forensic investigations.
• Technical Leadership: serve as a subject matter expert on cyber defense engineering, providing guidance and technical insights to our customers, your peers, and the cyber engineering strategy.
• Threat Analysis: collaborate with cyber defense operations to analyze emerging threats and current gaps in technical capabilities, implementing measures to strengthen defense mechanisms.
• Develop and refine threat defense analytics to effectively detect cyber-attacks against DDC.
• Build task automation and procedure orchestration to support cyber defense operations.
• Problem Solving: capable of working, both independently and in teams, to troubleshoot and resolve complex cyber engineering challenges, identify the root cause of capability outages and errors, and develop sustainable solutions.
• Innovation & Continuous Improvement: stay abreast of the latest trends and technologies in cybersecurity, applying best practices to continuously enhance our defense strategies and capabilities.
• Documentation: maintain accurate procedures and documentation for all capabilities and services in scope for the Platforms & Automation team.
• On-Call: support cyber defense capability availability incidents and support the cyber defense operations team while hands-on experience with our investigation process to identify automation opportunities.

Qualifications

• Bachelor’s degree. Relevant experience within the military is acceptable in lieu of a degree.
• 8+ years of experience in one or more of the following areas: cybersecurity engineering, detection engineering, incident response, or a similar role, with a proven track record of independent problem solving in high-stakes environments.
• Significant experience using Python for task automation, procedure orchestration, and capability development.
• Hands-on experience deploying and configuring security platforms, such as SIEM, SOAR, EDR, NGFW, and network monitoring tools.
• Experience integrating cyber defense tools and utilizing APIs for process orchestration and task automation.
• Experience building and deploying threat defense (SIEM) analytics using a detection engineering pipeline.
• Strong analytical skills with a keen attention to detail.
• Strong technical writing skills including documentation development, process mapping, and visualization, with the ability to translate complex technical concepts for a variety of technical audiences.
• Proven ability to work autonomously, lead projects from conception to implementation, and overcome roadblocks in a highly collaborative environment.

Nice to Have:

• Experience implementing LLMs, ML, or other advanced analytic and decision-making support capabilities into enterprise cybersecurity services and workflows.

Not Applicable

Full-time

Information Technology

Insurance