We are still looking for top talent and would be delighted if you joined our team!
UST is a multinational company based in North America, certified as a Top Employer and Great Place to Work, with over 35,000 employees across more than 35 countries. We are leaders in digital technology services, providing large-scale technological solutions to major companies.
What are we looking for?
We seek a talented and experienced Information Security Architect with a strong focus on SOAR to join our Information Security team.
The ideal candidate will develop and implement automated security solutions to protect our systems and data, working proactively and collaboratively to enhance our security posture. Proficiency and experience using a SOAR platform for automation and security incident response are required.
This is a 100% remote position for individuals based in Spain.
Key Responsibilities:
* Develop, implement, and maintain security automation scripts and tools using Python.
* Integrate security tools and solutions to automate security processes and workflows.
* Conduct security assessments and vulnerability analyses to identify and mitigate threats.
* Monitor security systems and respond to incidents using automated solutions.
* Collaborate with cross-functional teams to design and implement security controls.
* Stay updated with the latest security trends, vulnerabilities, and technologies.
* Develop and manage APIs to facilitate communication between security tools and systems.
* Build and refine automation processes to high standards of reliability, efficiency, and error handling.
* Implement and manage SOAR platforms such as Palo Alto Cortex XSOAR, Splunk Phantom, IBM Resilient, Cyware, Microsoft Logic Apps, and ThreatConnect.
* Utilize Microsoft Defender for Endpoint (MDE) for endpoint protection and threat detection.
* Create and analyze security data queries using Kusto Query Language (KQL).
* Document technical procedures, SOPs, and user guides for security tools and processes.
* Implement and automate CI/CD pipelines for secure code deployment.
* Use Infrastructure as Code (IaC) tools like Terraform and Ansible for managing secure infrastructure.
Mandatory Requirements:
* Minimum 4 years’ experience programming in Python, including developing automation scripts and tools.
* Proven experience as a Security Engineer or similar role, focusing on Python and security automation.
* Familiarity with scripting languages such as PowerShell and Bash.
* Experience with security tools like SIEM, IDS/IPS, firewalls, and vulnerability scanners.
* Knowledge of cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes).
* Experience with API development and RESTful API integration.
* Proficiency with SOAR platforms (e.g., Cortex XSOAR, Splunk Phantom, IBM Resilient, Cyware, Logic Apps, ThreatConnect).
* Hands-on experience with Microsoft Defender for Endpoint (MDE).
* Excellent problem-solving skills and attention to detail.
* Strong communication skills, both written and verbal, capable of conveying complex concepts to technical and non-technical audiences.
* Experience in writing detailed technical documentation, including SOPs and user guides.
Preferred Skills:
* Bachelor's degree in Computer Science, Information Security, or a related field.
* Proficiency in Kusto Query Language (KQL).
* Experience with IaC tools like Terraform and Ansible.
* Relevant certifications such as CISSP, CEH, OSCP, or GIAC.
* Experience with CI/CD automation tools like Jenkins and GitLab CI/CD.
* Knowledge of DevSecOps practices.
* Understanding of network protocols and security architecture.
* Familiarity with security testing, prevention, and detection strategies.
* English language proficiency at B2/C1 level.
* Experience dealing with multiple SOAR environments and Security Operations exposure.
* Ability to work independently with minimal guidance and mentor junior team members.
What can we offer?
* 23 days of annual leave plus discretionary days on December 24th and 31st.
* Numerous benefits including healthcare, internet connectivity, and insurance plans.
* Free access to training platforms.
#J-18808-Ljbffr