Iron Vine Security - SOAR Engineer
Position Title: SOAR EngineerLocation: Woodlawn MD (Hybrid)Hours: M - F 8:00 am to 4:00 PMPosition Summary:Iron Vine Security is a rapidly growing information security and information technology company in Washington, DC. We are looking to hire a Security Orchestration Automation & Response (SOAR) Engineer to perform on a long-term contract in Baltimore, MD. The position is full time/permanent and will support a US Government civilian agency. The position is available immediately upon finding a qualified candidate with the appropriate background clearance.Job Requirements:Minimum of 4 years of relevant cyber security experience in IT Security, Incident Response or network security and experience working in a SOC.Minimum of 2 years of experience with the incident response process and log analysis using Splunk or another SIEM.Working knowledge of different operating systems, networking concepts, protocols, and other computing technologies.Experience with security analytics tools such as packet capture and web application firewalls.Excellent problem solving, critical thinking, and analytical skills with the ability to de-construct problems.Work experience with automating business processes through scripting.Experience with object-oriented programming.Strong collaborative skills and ability to work in a diverse team.Strong analytical and investigation skills.Strong customer service skills and decision-making skills.US Citizen with the ability to obtain a Public Trust Clearance.Certifications/Licenses:One or more of the following industry standard certifications:Bachelor's degree in Computer Science or related field or equivalent work experience.Formal IT Security/Network Certification such as CompTIA Security+, SANS GIAC Certified Intrusion Analyst (GCIA) or SANS GIAC Certified Incident Handler (GCIH).Additional Experience Preferred:Experience with Splunk Phantom or a comparable SOAR solution.Experience with Python scripting and working with 3rd party APIs.Minimum 2-years of experience in SOC/CIRT with some experience as a senior level analyst, Lead Analyst or Subject Matter Expert (SME).Experience at the Centers for Medicare and Medicaid Services (CMS) or US Department of Health and Human Services (HHS).Previous SOC/CIRT experience at a federal agency similar in size, scope, and complexity.Position Responsibilities: Assist with documenting and assessing the quality of SOC procedures.Work with SOC analysts to identify automatable actions and procedures.Develop Phantom content in the form of workbooks and playbooks, and provide guidance and approval for all proposed content.Follow established procedures for developing and maintaining Phantom content.Develop metrics and KPIs for Phantom.Identify and develop 3rd party and custom API integrations that may be necessary for playbook development.Maintain good communication and rapport with internal/ external support teams and leadership staff.Iron Vine Security is a federal contractor. As such, we are subject to an Executive Order requiring all employees of federal contractors to be fully vaccinated for COVID-19 by December 8, 2021.Therefore, by applying for this position, you understand that you will be required to verify that you have been, or will be, fully vaccinated by December 8, or to verify that you cannot be vaccinated due to a legally recognized exception to the vaccine mandate set forth in the Executive Order.Note :A' An individual is not considered to be fully vaccinated until two weeks after receiving the second vaccine dosage in a vaccine regimen involving two vaccines.Iron Vine Security is an equal opportunity employer. All qualified applicants are considered for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable federal, state or local laws.