Duties and Responsibilities:

Serve as the Subject Matter Expert of the SOAR solution and security automation efforts. SOAR configuration and management. Creation of advanced security playbooks and tuning of existing playbooks. Automate Incident Response functions to optimize and supplement SOC. Integrate third party threat feeds and other applications. Identify inefficient processes that can be automated. Creation of technical documentation detailing playbooks, workflows, queries and more. Research latest threats and attack tactics; implement defensive measures and response procedures to reduce potential impact. Provide solutions to improve secure configuration and hardening of endpoint systems, perimeter networks, and cloud technologies. Perform technical analysis of malware and network/web application attacks and other suspicious activities. Use the Incident Response Lifecycle to guide your work tasks and implement processes and procedures.

Education and Experience:

Certified Information Systems Security Professional (CISSP) or Equivalent preferred. SANS and/or Advanced GIAC certifications desired. Bachelor’s degree in computer science or a related technology field or equivalent in comparable work experience within the network or security field preferred. Extensive experience maintaining, optimizing, and troubleshooting SOAR solutions. Experience with scripting and APIs strongly desired. Extensive experience with Palo Alto Networks solutions strongly desired. Experience with information security incident response and risk mitigation. Experience in enterprise environments. Familiarity with compliance frameworks such as SOC2, SOX and PCI a plus.

Knowledge and Skills:

Highly motivated and able to work independently and as part of a fast-paced and high performing team. Open-minded, adaptable, and passionate about learning. Strong organization and planning skills. Strong analytical skills. Ability to solve unique problems with outside-the-box solutions. Broad knowledge of Enterprise Infrastructure concepts and best practices as they relate to Cyber Security and incident response. Python, JavaScript or Powershell. Solid understanding of packets, network traffic, and the OSI model. Knowledge of penetration testing methods and tools. Excellent communication and writing skills. ADT is an Equal Employment Opportunity (EEO) Employer. We celebrate diversity and are committed to building an inclusive team that represents a variety of backgrounds, perspectives, and skills. ADT strives to ensure every employee and applicant feels valued. Visit us at jobs.adt.com/diversity to learn more.​