Description
About the job
We are actively recruiting for a contract SOAR Engineer with experiences on playbook development, programming fundamentals to come along in the project and write playbooks, debug on a graphical interface - ThreatConnect.
This role can be delivered remotely, however due to the nature of consultancy, occasional travel will be expected to client sites for meeting and collaboration purposes.
What you'll do
Develop knowledge of Threat Intelligence Platform, processes & procedures.
Develop & support use cases on TIP, collaborating & communicating with TIP team & required stakeholders.
Create documentation relating to platform, processes & playbooks.
TIP System Administration: platform configuration & management, troubleshoot & resolve issues with incoming feeds and apps, user management & audit, system health checks.
TIP Support: monitor TIP Support mailbox, respond to support tickets and stakeholder queries, resolve issues with platform, interact with external support teams.
Manage change requests & activity for the platform and playbooks across Dev, PreProd and Prod environments.
What you'll bring
Playbook development experiences, where you're familiar with programming concepts & logic of building code
Basic/Intermediate Linux knowledge
Networking experience (Understanding of IP Addressing, subnetting, DNS, VPNs, protocols)
Network Security knowledge