INFORMATION SECURITY SOAR ENGINEER (Remote)

TE Connectivity

Location: Middletown, Pennsylvania

Job Type: Full time

Posted



Job Overview

TE Connectivity Ltd. is a $13 billion global technology and manufacturing leader creating a safer, sustainable, productive, and connected future. For more than 75 years, our connectivity and sensor solutions, proven in the harshest environments, have enabled advancements in transportation, industrial applications, medical technology, energy, data communications, and the home. With 78,000 employees, including more than 7,000 engineers, working alongside customers in nearly 150 countries, TE ensures that EVERY CONNECTION COUNTS.


Job Summary:
The Information Security SOAR Engineer role resides within the Cyber Defense Team at TE Connectivity. This team is responsible for Threat Intelligence, Incident Detection, Monitoring and Reaction. They manage and monitor the critical security controls that protect our company. The Information Security SOAR Engineer will assess, design, and implement SOC use cases, runbooks, and workflows, execute API and 3rd party APIs integrations with variety of tools. The Information Security SOAR Engineer position is responsible for integrating existing and new logging sources, building workflows to assist effective monitoring and response to alerts from our security controls, but more importantly, they will work closely with other analysts looking through the environment for malicious behavior that may not have generated any alert yet.
They will assist with SOC alerts statistics to address and reduce false positive alerts and assist with documenting and assessing the effectiveness of the SOC procedures.
The qualified candidate must have a passion for security with strong technical knowledge across a broad technology spectrum. Must understand security technology trends, standards, marketplace offerings, best practices and how to apply them. You must also be able to lead others through collaboration, teamwork and thought leadership.

Primary Responsibilities:
1. Security Orchestration Automation & Response (SOAR) - Responsible for managing and developing the SOAR platform, developing use cases, playbooks, runbooks, workflows, and reports
2. Cyber Threat Hunting – Assisting other SOC analysts in identifying and reacting to threats throughout the organization utilizing a variety of security tools
3. Incident Response – Participate in incident response investigations, including host, network, and log forensics
4. Security Controls Management - Manage the entire suite of Enterprise Security Controls including (but not limited to): EDR, UEBA, SIEM, Intrusion Detection/Prevention, 2-factor solutions, vulnerability scanning, sandboxes, encryption technologies, authentication/authorization solutions, Data Loss Prevention, flow monitoring, etc.
5. Red/Blue Fusion Team - Participate in regular penetration tests of our environment from both internal and external locations

What your background should look like:

Competencies Values: Integrity, Accountability, Teamwork, Innovation
Competencies & Experience Required/Desired:
Required
1. Minimum of 3 to 5 years of experience as a Senior Analyst within a SOC, IR, or Network/Systems Security engineering function.
2. Minimum of 3 to 5 years of experience with administering or managing SOAR/SIEM tools and technologies in an enterprise.
3. Demonstrated experience with at least one programming/scripting language such as JavaScript and Python, Perl for automation.
4. Demonstrated experience in understanding networking technologies and protocols.
5. Systems administration experience with Windows or UNIX-based operating systems.
6. Capable of consulting with technical and business teams to understand their security issues and communicate on a tactical and strategic level.
7. Must have technology passion and staying current with emerging security trends.
8. Excellent verbal & written communication and presentation skills. Must be able to communicate effectively to executive and developer levels.

Preferred

1. Experience with some security tools and technologies including but not limited to:

  • SOAR Implementation & Development
  • Scripting and Programming
  • EDR
  • UEBA
  • SIEM
  • Intrusion Detection/Prevention
  • Penetration Testing
  • Malware Analysis/Reverse Engineering
  • Vulnerability scanning
  • Encryption technologies
  • Current cloud solutions, systems, and applications
  • Developing metrics and KPIs

2. Experience working in a global organization
3. Experience with threat intelligence and risk evaluation
4. Experience with performing security audits

The qualified candidate must have a passion for security with strong technical knowledge across a broad technology spectrum. Must understand security technology trends, standards, marketplace offerings, best practices and how to apply them. You must also be able to work independently with little guidance while managing competing priorities, and lead others through collaboration, teamwork and thought leadership.

Educational Required:
Undergraduate degree in an Information Technology/Systems discipline OR other equivalent work experience

Competencies

Values: Integrity, Accountability, Teamwork, Innovation

COMPENSATION

  • Competitive base salary commensurate with experience: $109,000 – $164,000 per year (subject to change dependent on physical location)
  • Posted salary ranges are made in good faith. TE Connectivity reserves the right to adjust ranges depending on the experience/qualification of the selected candidate as well as internal and external equity.
  • Total Compensation = Base Salary + Incentive(s) + Benefits
BENEFITS
  • A comprehensive benefits package including health insurance, 401(k), disability, life insurance, employee stock purchase plan, paid time off and voluntary benefits.

EOE, Including Disability/Vets

You’ve got this!