TekStream Solutions
Security Automation Engineer
TekStream Solutions United States (Remote) Splunk SOAR/Phantom Automation Developer (part-time, as needed on a project basis)
Location: Remote, US-based.
TekStream is seeking a Splunk resource with experience with Splunk SOAR/Phantom to aid and lead in developing playbooks and implementing integrations as part of the playbook development process. The role will entail working within Splunk SOAR and working as a part of a team developing and maintaining playbooks as a part of an MDR (Security) solution, integrating with other products such as Splunk Enterprise Security.
Requirements: • 2 or more years of experience developing playbooks and implementing integrations with Splunk SOAR /Phantom in the context of an MDR (Managed Detection & Response) security solution • Python scripting skills for automation • Experience developing playbooks for Splunk SOAR • Experience with Splunk Enterprise Security
-Experience in analyzing, hunting and remediating security threats
-Experience working with other teams to coordinate their response
-Ability to abstract a threat model and optimal incident response processes/workbooks
Preferred skills • Bachelor's Degree in Computer Science, or equivalent relevant certifications and technical training • Splunk certifications (Splunk Certified Enterprise Security Administrator preferred) • Experience with other SIEM tools and a general understanding of SOC operations
TekStream Solutions United States (Remote) Splunk SOAR/Phantom Automation Developer (part-time, as needed on a project basis)
Location: Remote, US-based.
TekStream is seeking a Splunk resource with experience with Splunk SOAR/Phantom to aid and lead in developing playbooks and implementing integrations as part of the playbook development process. The role will entail working within Splunk SOAR and working as a part of a team developing and maintaining playbooks as a part of an MDR (Security) solution, integrating with other products such as Splunk Enterprise Security.
Requirements: • 2 or more years of experience developing playbooks and implementing integrations with Splunk SOAR /Phantom in the context of an MDR (Managed Detection & Response) security solution • Python scripting skills for automation • Experience developing playbooks for Splunk SOAR • Experience with Splunk Enterprise Security
-Experience in analyzing, hunting and remediating security threats
-Experience working with other teams to coordinate their response
-Ability to abstract a threat model and optimal incident response processes/workbooks
Preferred skills • Bachelor's Degree in Computer Science, or equivalent relevant certifications and technical training • Splunk certifications (Splunk Certified Enterprise Security Administrator preferred) • Experience with other SIEM tools and a general understanding of SOC operations