SOAR Specialist

of team & work

The Global Security Operations Center (SOC) has developed considerably over the last 5 years and has developed a mature security monitoring & incident response service. Automation (SOAR) plays a vital role in our SOC and we are exploring opportunities on Artificial Intelligence (AI) and Machine Learning / Data Science techniques. In our pursuit of extending and maturing our SOAR efforts we are looking for a SOAR specialist to join our team.

As SOAR Specialist, you will be part of our Global Security Operations (28 FTE) team. You will work on the execution of our SOAR roadmap while keeping a close eye on maintaining what has been developed (DevOps). In addition, you naturally take the lead in researching and experimenting with the newest technologies to enhance our SOAR and overall SOC performance. You enjoy sharing your ideas and experience with others in the team, while they share interesting and fun stuff with you

From our ideal candidate we expect

- 7+ years of experience in an operational security / blue team environment;

- Experienced with the Kusto Query Language (KQL) and the MS Security Suite (Sentinel);

- Experience with automation techniques in Azure, Sentinel (Playbooks, Logic Apps, automation rules) and the PowerApps platform;

- Technical certificates, like AZ-500, SC-200, AZ-305 or PL-100;

- The ability to help and develop your colleagues (knowledge sharing);

- You like to connect with others, in- and outside of the team;

- You can work both individually and as a team;

- You want to get the job done and achieve results.

---