Job Description Summary
Responsible for developing and maintaining the technical IT / cyber security capabilities necessary for safeguarding the firm's information systems and applications (software development lifecycle). Be a Team Leader and Subject Matter Expert in Security Automation, DevOps, SDLC, and bring fresh insight and sound development practices to the Cyber Defense SOAR Development Team. Design, plan, test, and implement phases of cybersecurity technology projects, with a focus on integrating and operationalizing Large Language Models (LLMs) and Generative AI within cybersecurity use cases.
Job Description
Essential Duties and Responsibilities
- Focus on the development, maintenance, and delivery of new Security Orchestration and Automation content including custom RESTful API integrations, SOAR Playbooks, Automations/Scripts, Jobs, dashboards, reports, widgets, and code via Continuous Integration / Continuous Delivery pipelines adhering to an Agile development practice.
- Develop and maintain technical IT/cyber capabilities including all phases of the software development lifecycle and software stack which includes threat modeling of application designs, static application security testing (SAST), software composition analysis (SCA), dynamic application security testing (DAST), and penetration testing.
- Lead efforts related to designing, planning, enhancing, and testing all cybersecurity technologies used throughout the enterprise.
- Analyze information to determine, recommend, and plan the use of new information security technologies or modifications to existing equipment and systems.
- Lead the implementation of new information security technologies or integration of existing technologies, including the operational implementation of LLMs and Generative AI.
- Use sophisticated analytical thought through models, testing, and experience to exercise judgment and identify innovative solutions.
- Responsible for technical support of information security technologies providing expert problem analysis and resolution in a timely manner.
- Leads teams or projects with moderate resource requirements, risk, and complexity.
Required Qualifications
- Bachelor's degree and eight years of experience in systems engineering or administration or an equivalent combination of education and work experience.
- Deep specialized and/or broad functional knowledge in applied enterprise information security technologies.
- CISSP Certification.
- Previous experience in leading complex IT projects.
Preferred Qualifications
- Experience with No-Code/Low-Code Security Orchestration and Automated Response (SOAR) tools.
- Python development experience.
- Palo Alto XSOAR Platform Expertise.
- Master's degree or MBA and ten years of experience or an equivalent combination of education and work experience.
- Banking or financial services experience.
- Docker, Kubernetes, containerization pipeline, and deployment experience.
- Other security certifications (e.g. CCNA Security, GSEC, GCED, GPPA, etc.).
- Other technical Certifications (e.g. CCNA, RHCE, MCSE, etc.).
- Demonstrated knowledge of Large Language Models (LLMs) and Generative AI, with a focus on Azure AI offerings.
- Experience operationalizing Cyber use cases with LLMs.
- Proven track record of integrating Generative AI into security solutions.