Deloitte Cyber Fusion SOAR Automation Developer- Senior in McLean, Virginia
Are you interested in improving the cyber and organizational risk profiles of leading companies? Do you want to be involved in delivering Fusion Managed / Security Operations Center (SOC) Services including ensuring the stability, integrity and efficient operations of the systems that support core organizational functions? Are you excited about rapidly changing operational environments, learning what you need to get the job done, and producing accurate and timely results?
If yes, then Deloitte's Fusion Managed Services (FMS) team could be the place for you! Transparency, innovation, collaboration, sustainability: these are the hallmark issues shaping cyber initiatives today. Deloitte's FMS business is passionate about making an impact with lasting change. Delivering our industry leading services requires fresh thinking and a creative approach. We collaborate with teams from across our organization in order to bring the full breadth of Deloitte, its commercial and public sector expertise, to best support our clients. Our aspiration is to be the premier integrated services provider in helping to transform the cyber security services marketplace.
Our team is client focused and mission driven. As an "SOAR and AWS Engineer" in Deloitte's Fusion Managed Services, you'll work with our diverse teams of passionate professionals to help solve for some of today's toughest cybersecurity challenges to enable or clients to achieve business growth and manage risk.
Work you'll do
The Deloitte FMS automation team aims to make client and analyst security teams lives easier! We are looking for a strong AWS cloud engineer / SOAR architect to join our small, but accomplished MSSP automation team. You will have our support to become an influential voice in shaping our product, our technical direction and how we work. You'll use your understanding of common security challenges and the necessity of automation to influence a product that brings this power to all levels of users. You'll use your skills to build exciting new solutions to routine manual processes across a variety of tools and disciplines from client-side tools all the way down to our Fusion operation centers worldwide. Lead the evaluation, integration and testing of new Cyber tools and technologies.
• Work together with other architects, engineers, designers and product managers to turn our systems, services and technical vision into a tangible roadmap.• Help our customers review, refine and automate their internal processes• Help automate internal FMS SOC operations workflows• Understand the current cloud, systems, and application infrastructure and suggest changes to them.• Define and document operational and security best practices and strategies.• Migrate our infrastructure with zero downtime to a highly available, scalable one.• Establish and Maintain a technology monitoring stack.• Define service capacity planning strategies.• Write infrastructure as code using CloudFormation or similar.• You should see different technologies as a means to an end and be well practiced at hunting for a solution through unfamiliar domains
• Bachelor of Science with a concentration in computer science, information systems, information security, engineering or equivalent work experience• Experience in Highly available 24x7 Enterprise Operational Environment• Previous exposure to large-scale systems design.• Extensive knowledge in system security architecture and security solutions• 10+ years of experience in System Administration, Systems Engineering, or Architecture experience• 5+ Years' Experience with Linux and 3+ years of hands on AWS cloud experience, including cross-region deployment• Monitoring daily system performance and respond immediately to security or usability concerns• Ability to respond to and resolve incident requests through root cause analysis and troubleshooting of distributed systems.• Understanding of load balancing, TCP/IP, basic networking skills such as IP, DNS, HTTP, and LDAP• Ensure that all server hardware, operating systems, software and procedures aligned with organizational standards.• Understanding of the full software development life cycle: Analysis, Design, Coding, Testing and promotion into Production.• Hands-on experience supporting and managing secure Web-based environments• Must be adaptable to work in a varied, fast paced, ever changing environment• Strong communication, interpersonal, analytical and problem-solving skills• Experience with Splunk Phantom SOAR or similar SOAR platform• Experience with Splunk Enterprise, Splunk ES, or similar SIEM Administration• Experience with Scripting "Python Preferred" and Code Repositories and Version Control "GitHub Preferred"• Adequate Scripting / Development experience to assist in Software Quality Testing and Code Review• Travel up to 80% (While 80% of travel is a requirement of the role, due to COVID-19, non-essential travel has been suspended until further notice)• Limited immigration sponsorship may be available
• Excellent interpersonal and organizational skills• Experience with Docker and Kubernetes is a plus.• Experience with monitoring solutions such as CloudWatch• Experience working with project management software like Jira, ServiceNow, or ZenDesk• Ability to write infrastructure as code using CloudFormation/Terraform or similar.• Experience with building or maintaining cloud-native applications• Experience with the serverless approaches using AWS Lambda• Self-motivated to improve knowledge and skills• A strong desire to understand the what as well as the why and the how of security incidents• Experience with Apache NiFi and secure NiFi registry
Deloitte's FMS team helps complex organizations more confidently pursue their growth, innovation, and performance agendas through proactive and sustained management of the associated cyber risks. Our professionals deliver ongoing managed services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient. TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory's Cyber Risk Services practice.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.