Threat Intelligence - Cairo
منذ يومين
وصف الوظيفة
JOB PURPOSE:
The Senior SOAR Engineer specializes in leveraging Cortex XSOAR to automate and orchestrate security operations across the organization. This role involves designing, implementing, and optimizing automated workflows, incident response strategies, and playbooks to enhance the efficiency of security operations.
ROLE AND RESPONSIBILITIES
- Design and implement automation workflows using Cortex XSOAR to enhance incident response efficiency and reduce mean time to resolution (MTTR).
- Develop and optimize playbooks addressing various security incidents and alerts, ensuring comprehensive coverage of the threat landscape.
- Integrate Cortex XSOAR with existing security tools, ensuring smooth data flow and enhancing overall security posture.
- Collaborate with SOC teams and other stakeholders to gather requirements and translate them into effective automation solutions.
- Monitor and maintain the health of the Cortex XSOAR environment, troubleshooting issues and ensuring high availability.
- Provide training and mentorship to junior staff and SOC analysts on SOAR best practices and usage of Cortex XSOAR.
- Document workflows, processes, and playbook configurations as part of operational and compliance requirements.
- Stay updated with the latest trends in security automation and SOAR technologies to continuously improve and adapt security operations.
- Participate in incident response activities, contributing to investigations and post-incident reviews to improve future automation efforts.
- Lead projects focused on adding new capabilities to the SOAR platform based on emerging threats and organizational needs.
Requirements
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- 5+ years of experience in security operations, incident response, or security engineering, with significant experience in SOAR solutions.
- Proficient understanding of Cortex XSOAR platform, including playbook development and integration with security tools.
- Experience in scripting and automation (e.g., Python, JavaScript) for workflow improvements.
- Strong analytical and problem-solving skills, with proven ability to work in fast-paced environments.
- Excellent communication skills, capable of collaborating with diverse teams and stakeholders.
Benefits
- Private Health Insurance ( Family )
- Social Insurance
وظائف مماثلة
The Senior SOAR Engineer specializes in leveraging Cortex XSOAR to automate and orchestrate security operations across the organization. · This role involves designing, implementing, and optimizing automated workflows, · incident response strategies, · and playbooks to enhance th ...
منذ 3 أيام
Analyze threat reports campaigns and adversary behavior evaluate indicators TTPs end-to-end attack narratives help generate structure validate threat-intelligence data used to train assess AI systems review AI-generated outputs accuracy consistency competitive pay flexible remote ...
منذ أسبوع
We're looking for analysts who understand adversaries, campaigns, and real-world threat-intelligence workflows. · Analyze and classify threat reports. · Evaluate indicators. · ...
منذ شهر
+Job summary · At Alignerr we partner with AI research teams to build cutting-edge AI models. · Analyze threat reports campaigns adversary behavior · Evaluate indicators TTPs end-to-end attack narratives · ...
منذ أسبوعين
This position supports Information security strategic program milestones by implementing threat Intelligence programs in parallel with threat vulnerability management programs. · Maintain a current understanding of the threat landscape for the Banking industry. · Ensure implement ...
منذ 3 أسابيع
Cyber Threat Intelligence Analyst/ Senior Analyst. · Support Information security strategic program milestones, · Establish reporting communications that support Information Security IT threat Intelligence activities, · Evaluate controls for information systems during the require ...
منذ 3 أسابيع
Strategic objectives: Support Information security strategic program milestones. Technical implementation of the Information security program and set actionable plan with IT. · ...
منذ 5 أيام
The Email Security & Insider Threat Engineer is responsible for protecting the organization against phishing, business email compromise (BEC), malware campaigns, and insiderdriven threats. · Monitor and manage email security platforms to detect phishing, BEC, and malware attacks. ...
منذ أسبوع
The SOC manager is responsible for the strategic and operational oversight of the Security Operations Center (SOC), which manages security across both Information Technology (IT) and Operational Technology (OT) domains. ...
منذ شهر
The Cyber Operations and Threat & Vulnerability Manager is responsible for overseeing cybersecurity operations threat detection vulnerability management and risk mitigation across both Information Technology IT and Operational Technology OT environments. · ...
منذ شهر
We're looking for a highly driven SaaS Business Developer to help grow our cybersecurity platform focused on Dark Web Monitoring and Threat Intelligence. · Sell our SaaS solutions for dark web monitoring, threat intelligence, and cyber risk visibility · ...
منذ أسبوعين
This position is part of the Global Business Solution (GBS+), IT Department. Monitor, analyze and prioritize security events Investigate, contextualize and remediate security incidents based on playbooks and individual analysis leveraging data from different source and tools. · ...
منذ 4 أسابيع
A SOC T3 analyst acts as the final escalation point for critical incidents and advanced threats performing deep forensic analysis threat hunting and proactive security improvement activities. · ...
منذ شهر
+InvestigateescalatedincidentsfromTier2analystsincludingAPTzero-dayattacks+ · +Performrootcauseanalysisandidentifythescopeofabreach+ · +Conductproactivethreathuntingbasedonthreatintelligenceandanomalouspatternsinlogs+ ...
منذ شهر
The Security Operations Center (SOC) Analyst Tier 1 is responsible for the initial monitoring, investigation, and response to security incidents within an organization's IT infrastructure. · This entry-level role serves as the first line of defense against cyber threats, · ensuri ...
منذ 4 أيام
Design implement and maintain the bank s cybersecurity architecture and controls monitor cyber threats detect anomalies and respond to incidents in coordination with IT and security teams conduct penetration testing and vulnerability assessments in partnership with internal and e ...
منذ شهر
Geidea is looking for a Cybersecurity Defense Expert to lead the defense against cyber threats and ensure the integrity of information systems. · ...
منذ 4 أيام
This position will be responsible for performing in-depth risk assessments threat analysis and vulnerability evaluations of software system deployments developed by R&D engineers. · This position will proactively identify security threats in software networking and operational en ...
منذ شهر
We are building the next intelligence platform focusing on Darkweb Monitoring and Threat Intelligence. The product is already built for enterprise clients. · ...
منذ 3 أسابيع
The SOC Analyst will be the first line of defense in our Security Operations Center. · ...
منذ شهر